Synopsis
The remote host may be vulnerable to a denial of service.
Description
The target is running at least one instance of osTicket 1.2.7 or earlier. Such versions are subject to a denial of service attack in open.php if osTicket is configured to receive mails using aliases. If so, a remote attacker can generate a mail loop on the target by opening a ticket with the support address as the contact email address. For details, see :
- http://www.nessus.org/u?a1aa7bab
***** Nessus has determined the vulnerability exists on the target
***** simply by looking at the version number(s) of osTicket installed
***** there. It has no way of knowing which method osTicket uses to
***** retrieve mail.
Solution
Configure osTicket to receive mail using POP3.
Plugin Details
File Name: osticket_support_address_dos.nasl
Supported Sensors: Nessus
Vulnerability Information
Required KB Items: www/osticket