CVE-2010-4767

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2010-4767

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2010-4767.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2010-4767

Downstream

DEBIAN-CVE-2010-4767

Published

2011-03-18T16:55:01Z

Modified

2025-04-11T00:51:21Z

Summary

[none]

Details

Open Ticket Request System (OTRS) before 2.3.6 does not properly handle e-mail messages in which the From line contains UTF-8 characters associated with diacritical marks and an invalid charset, which allows remote attackers to cause a denial of service (duplicate tickets and duplicate auto-responses) by sending a crafted message to a POP3 mailbox.

References

http://bugs.otrs.org/show_bug.cgi?id=3426
http://source.otrs.org/viewvc.cgi/otrs/CHANGES?revision=1.1807

CVE-2010-4767

Affected packages