CVE-2010-4758

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2010-4758

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2010-4758.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2010-4758

Downstream

DEBIAN-CVE-2010-4758

Published

2011-03-18T16:55:01Z

Modified

2026-04-10T03:41:32.645467Z

Summary

[none]

Details

installer.pl in Open Ticket Request System (OTRS) before 3.0.3 has an Inbound Mail Password field that uses the text type, instead of the password type, for its INPUT element, which makes it easier for physically proximate attackers to obtain the password by reading the workstation screen.

References

http://bugs.otrs.org/show_bug.cgi?id=6302
http://bugs.otrs.org/show_bug.cgi?id=6302
http://source.otrs.org/viewvc.cgi/otrs/CHANGES?revision=1.1807

CVE-2010-4758

Affected packages