Detections
Analytics

FreeBSD : OTRS -- Multiple XSS and denial of service vulnerabilities (96e776c7-e75c-11df-8f26-00151735203a)

low Nessus Plugin ID 50470

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

OTRS Security Advisory reports :

- Multiple Cross Site Scripting issues : Missing HTML quoting allows authenticated agents or customers to inject HTML tags. This vulnerability allows an attacker to inject script code into the OTRS web-interface which will be loaded and executed in the browsers of system users.

- Possible Denial of Service Attack : Perl's regular expressions consume 100% CPU time on the server if an agent or customer views an affected article. To exploit this vulnerability the malicious user needs to send extremely large HTML emails to your system address.

AgentTicketZoom is vulnerable to XSS attacks from HTML e-mails :

Whenever a customer sends an HTML e-mail and RichText is enabled in OTRS, JavaScript contained in the email can do everything in the OTRS agent interface that the agent himself could do.

Most relevant is that this type of exploit can be used in such a way that the agent won't even detect he is being exploited.

Solution

Update the affected package.

See Also

https://otrs.com

http://www.nessus.org/u?f589c54d

Plugin Details

Severity: Low

ID: 50470

File Name: freebsd_pkg_96e776c7e75c11df8f2600151735203a.nasl

Version: 1.12

Type: local

Published: 11/4/2010

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.0

CVSS v2

Risk Factor: Low

Base Score: 3.5

Vector: CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:otrs, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 11/3/2010

Vulnerability Publication Date: 9/15/2010

Reference Information

CVE: CVE-2010-2080, CVE-2010-4071