1
Candidate: CVE-2010-4768
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4768
6
Open Ticket Request System (OTRS) before 2.3.5 does not properly disable
7
hidden permissions, which allows remote authenticated users to bypass
8
intended queue access restrictions in opportunistic circumstances by
9
visiting a ticket, related to a certain ordering of permission-set and
10
permission-remove operations involving both hidden permissions and other
20
upstream_otrs2: released (2.3.5)
22
hardy_otrs2: ignored (reached end-of-life)
23
karmic_otrs2: ignored (reached end-of-life)
24
lucid_otrs2: not-affected
25
maverick_otrs2: not-affected
26
natty_otrs2: not-affected
27
oneiric_otrs2: not-affected
28
devel_otrs2: not-affected