Published: 08/12/2017 Updated: 22/04/2021

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

In OTRS 6.0.x up to and including 6.0.1, OTRS 5.0.x up to and including 5.0.24, and OTRS 4.0.x up to and including 4.0.26, an attacker who is logged into OTRS as an agent can manipulate form parameters (related to PGP) and execute arbitrary shell commands with the permissions of the OTRS or web server user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
otrs otrs 4.0.24
otrs otrs 4.0.22
otrs otrs 4.0.15
otrs otrs 4.0.13
otrs otrs 4.0.6
otrs otrs 4.0.4
otrs otrs 5.0.23
otrs otrs 5.0.21
otrs otrs 5.0.14
otrs otrs 5.0.12
otrs otrs 5.0.5
otrs otrs 5.0.3
otrs otrs 5.0.0
otrs otrs 6.0.0
otrs otrs 4.0.20
otrs otrs 4.0.19
otrs otrs 4.0.18
otrs otrs 4.0.17
otrs otrs 4.0.16
otrs otrs 4.0.3
otrs otrs 4.0.2
otrs otrs 4.0.1
otrs otrs 5.0.24
otrs otrs 5.0.10
otrs otrs 5.0.9
otrs otrs 5.0.8
otrs otrs 5.0.7
otrs otrs 4.0.26
otrs otrs 4.0.25
otrs otrs 4.0.11
otrs otrs 4.0.10
otrs otrs 4.0.9
otrs otrs 4.0.8
otrs otrs 5.0.19
otrs otrs 5.0.18
otrs otrs 5.0.17
otrs otrs 5.0.16
otrs otrs 5.0.15
otrs otrs 5.0.2
otrs otrs 5.0.1
otrs otrs 6.0.1
otrs otrs 4.0.23
otrs otrs 4.0.21
otrs otrs 4.0.14
otrs otrs 4.0.12
otrs otrs 4.0.7
otrs otrs 4.0.5
otrs otrs 5.0.22
otrs otrs 5.0.20
otrs otrs 5.0.13
otrs otrs 5.0.11
otrs otrs 5.0.6
otrs otrs 5.0.4
debian debian linux 7.0
debian debian linux 8.0
debian debian linux 9.0

Debian Bug report logs - #883774 otrs2: CVE-2017-16921: Remote code execution Package: src:otrs2; Maintainer for src:otrs2 is Patrick Matthäi <pmatthaei@debianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 7 Dec 2017 13:45:02 UTC Severity: grave Tags: patch, security, upstream Found in ver ...

Two vulnerabilities were discovered in the Open Ticket Request System which could result in information disclosure or the execution of arbitrary shell commands by logged-in agents For the oldstable distribution (jessie), these problems have been fixed in version 3318-1+deb8u3 For the stable distribution (stretch), these problems have been fixed ...

# Exploit Title: OTRS Shell Access # Date: 21-01-2018 # Exploit Author: Bæln0rn # Vendor Homepage: wwwotrscom/ # Software Link: ftpotrsorg/pub/otrs/ # Version: 401 - 4026, 500 - 5024, 600 - 601 # Tested on: OTRS 502/CentOS 721511 # CVE : CVE-2017-16921 CVE-2017-16921: "In OTRS 60x up to and including 601, ...

OTRS versions 50x and 60x suffer from a remote command execution vulnerability ...

OTRS version 601 remote command execution exploit ...

CWE-78 https://www.otrs.com/security-advisory-2017-09-security-update-otrs-framework/https://www.debian.org/security/2017/dsa-4066 https://www.exploit-db.com/exploits/43853/https://lists.debian.org/debian-lts-announce/2017/12/msg00015.html http://packetstormsecurity.com/files/162295/OTRS-6.0.1-Remote-Command-Execution.html https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=883774 https://nvd.nist.gov https://www.exploit-db.com/exploits/43853/https://www.debian.org/security/./dsa-4066

CVE-2017-16921

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect