CVE-2010-4766
EPSS 0.23%發布日:2011/3/18修改日:2026/4/28
描述
The AgentTicketForward feature in Open Ticket Request System (OTRS) before 2.4.7 does not properly remove inline images from HTML e-mail messages, which allows remote attackers to obtain potentially sensitive image information in opportunistic circumstances by reading a forwarded message in a standard e-mail client.
受影響套件(1)
- Debian/otrs2from 0, < 2.4.7+dfsg1-1