The email-ingestion feature in Best Practical Request Tracker 4.1.13 up to and including 4.4 allows denial of service by remote attackers via an algorithmic complexity attack on email address parsing.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bestpractical request tracker |
||
fedoraproject fedora 28 |
||
fedoraproject fedora 29 |
||
canonical ubuntu linux 18.04 |
||
canonical ubuntu linux 16.04 |
||
debian debian linux 8.0 |
||
debian debian linux 10.0 |