Denial of Service Vulnerability in OTRS Ticket Search

Denial of Service Vulnerability in OTRS Ticket Search

CVE-2010-4759 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

Open Ticket Request System (OTRS) before 3.0.0-beta7 does not properly restrict the ticket ages that are within the scope of a search, which allows remote authenticated users to cause a denial of service (daemon hang) via a fulltext search.

Learn more about our User Device Pen Test.