Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0614

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2004-0614
Last Modified 05 Sep 2008 04:38:54
Published 06 Dec 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0614

Summary

osTicket trusts a hidden form field in the submit form to limit the upload size of a document, which could allow remote attackers to upload a file of any size.

Vulnerable Systems

Application

  • Osticket Sts


References

BUGTRAQ - 20040621 Multiple osTicket exploits!

XF - osticket-php-file-upload(16477)


Last Updated: 27 May 2016 10:38:40