CVE-2010-4766

EPSS 0.23%

Published: 3/18/2011Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-4766

Description

The AgentTicketForward feature in Open Ticket Request System (OTRS) before 2.4.7 does not properly remove inline images from HTML e-mail messages, which allows remote attackers to obtain potentially sensitive image information in opportunistic circumstances by reading a forwarded message in a standard e-mail client.

Affected packages (1)

Debian/otrs2from 0, < 2.4.7+dfsg1-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-4766