CVE-2010-4764

Loading...

General

Score:5.0/10.0
Severity:Medium
Category:Access Management Error

Impact Metrics

Confidentiality:None
Integrity:Partial
Availability:None

Exploitability Metrics

Access Vector:Network
Access Complexity:Low
Authentication:None

Published on 18/03/11 - Updated on 22/03/11

Description

Open Ticket Request System (OTRS) before 2.4.10, and 3.x before 3.0.3, does not present warnings about incoming encrypted e-mail messages that were based on revoked PGP or GPG keys, which makes it easier for remote attackers to spoof e-mail communication by leveraging a key that has a revocation signature.

Category: Access Management Error

CWE-255 (Credentials Management)
Weaknesses in this category are related to the management of credentials.

Security Notices

US National Vulnerability DatabaseCVE-2010-4764

Exploits

No exploits available for this CVE in our database.

Relative technologies

VendorProduct
otrsotrs

Share this vulnerability with:

Twitter Facebook LinkedIn Mail