1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
Candidate: CVE-2010-4758
PublicDate: 2011-03-18
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4758
Description:
installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an
Inbound Mail Password field that uses the text type, instead of the
password type, for its INPUT element, which makes it easier for physically
proximate attackers to obtain the password by reading the workstation
screen.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_otrs2:
upstream_otrs2: released (3.0.3)
dapper_otrs2: DNE
hardy_otrs2: ignored (reached end-of-life)
karmic_otrs2: ignored (reached end-of-life)
lucid_otrs2: ignored (reached end-of-life)
maverick_otrs2: ignored (reached end-of-life)
natty_otrs2: ignored (reached end-of-life)
oneiric_otrs2: not-affected (3.0.8+dfsg1-1)
precise_otrs2: not-affected (3.0.8+dfsg1-1)
quantal_otrs2: not-affected (3.0.8+dfsg1-1)
raring_otrs2: not-affected (3.0.8+dfsg1-1)
saucy_otrs2: not-affected (3.0.8+dfsg1-1)
devel_otrs2: not-affected (3.0.8+dfsg1-1)
|