~wgrant/ubuntu-cve-tracker/mainold

« back to all changes in this revision

Viewing changes to active/CVE-2008-1515

• browse files at revision 1093
• compare with another revision
• download diff
• download tarball
• view history from revision 1093

Show diffs side-by-side

added

removed

active/CVE-2008-1515

 

1

Candidate: CVE-2008-1515

 

2

References:

 

3

 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1515

 

4

 http://otrs.org/advisory/OSA-2008-01-en/

 

5

Description:

 

6

 The SOAP interface in OTRS 2.1.x before 2.1.8 and 2.2.x before 2.2.6

 

7

 contains "Missing security checks," which allows remote attackers to "read

 

8

 and modify objects" via SOAP requests.

 

9

Ubuntu-Description:

 

10

Notes:

 

11

 jdstrand> otrs 1.x and 2.0.x not affected

 

12

Bugs:

 

13

Priority: low

 

14

Discovered-by:

 

15

Assigned-to:

 

16

 

 

17

Patches_otrs:

 

18

upstream_otrs: needs-triage

 

19

dapper_otrs: not-affected (2.0.4p01-1)

 

20

edgy_otrs: not-affected (1:1.3.3p01-2)

 

21

feisty_otrs: not-affected (1:1.3.3p01-4)

 

22

gutsy_otrs: DNE

 

23

devel_otrs: DNE

• Older »

Loggerhead is a web-based interface for Breezy
Version: 2.0.1