Open Ticket Request System (OTRS) 2.3.x prior to 2.3.6 and 2.4.x prior to 2.4.8 does not properly handle the matching of Perl regular expressions against HTML e-mail messages, which allows remote malicious users to cause a denial of service (CPU consumption) via a large message, a different vulnerability than CVE-2010-2080.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
otrs otrs 2.3.5 |
||
otrs otrs 2.4.1 |
||
otrs otrs 2.3.2 |
||
otrs otrs 2.3.3 |
||
otrs otrs 2.3.4 |
||
otrs otrs 2.4.6 |
||
otrs otrs 2.4.7 |
||
otrs otrs 2.3.1 |
||
otrs otrs 2.4.4 |
||
otrs otrs 2.4.5 |
||
otrs otrs 2.4.2 |
||
otrs otrs 2.4.3 |