Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1515

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2008-1515
Last Modified 05 Sep 2008 12:00:00
Published 01 Apr 2008 01:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1515

Summary

The SOAP interface in OTRS 2.1.x before 2.1.8 and 2.2.x before 2.2.6 allows remote attackers to "read and modify objects" via SOAP requests, related to "Missing security checks."

Vulnerable Systems

Application

  • Otrs 2.1.7

  • Otrs 2.2.5


References

FEDORA - FEDORA-2008-3100

XF - otrs-soapinterface-weak-security(41577)

BID - 28647

SECUNIA - 29859

SECUNIA - 29622

SECUNIA - 29585

CONFIRM - http://otrs.org/advisory/OSA-2008-01-en/

SUSE - SUSE-SR:2008:008


Last Updated: 27 May 2016 10:47:33