CVE-2010-4767

EPSS 0.59%

Published: 3/18/2011Modified: 4/28/2026

Also known as:DEBIAN-CVE-2010-4767

Description

Open Ticket Request System (OTRS) before 2.3.6 does not properly handle e-mail messages in which the From line contains UTF-8 characters associated with diacritical marks and an invalid charset, which allows remote attackers to cause a denial of service (duplicate tickets and duplicate auto-responses) by sending a crafted message to a POP3 mailbox.

Affected packages (1)

Debian/otrs2from 0, < 2.4.5-1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-4767