it-securitynotifies AT lists.piratenpartei.de
Betreff: Sicherheitsankündigungen
Listenarchiv
[IT-SecNots] [announce] OTRS Security Advisory 2015-03 FAQ 5.0.2 (OTRS 5), FAQ 4.0.3. (OTRS 4), FAQ 2.3.4 (OTRS 3.3)
Chronologisch Thread
- From: Goran Pismestrovic <goran.pismestrovic AT otrs.com>
- To: announce AT otrs.org
- Subject: [IT-SecNots] [announce] OTRS Security Advisory 2015-03 FAQ 5.0.2 (OTRS 5), FAQ 4.0.3. (OTRS 4), FAQ 2.3.4 (OTRS 3.3)
- Date: Tue, 1 Dec 2015 13:29:45 +0100
- List-archive: <https://service.piratenpartei.de/pipermail/it-securitynotifies>
- List-id: Sicherheitsankündigungen <it-securitynotifies.lists.piratenpartei.de>
+++++++++ OTRS Security Advisory 2015-03 FAQ 5.0.2 (OTRS 5), FAQ 4.0.3. (OTRS 4), FAQ 2.3.4 (OTRS 3.3) +++++++++
Releases: FAQ 5.0.2 (OTRS 5), FAQ 4.0.3 (OTRS 4), FAQ 2.3.4 (OTRS 3.3)
Release date: 01-December-2015
Release date: 01-December-2015
Status: Patch Level Release
SECURITY FIXES:
==============
------------------------------------------------------------------
OTRS Security Advisory 2015-03 <security at otrs.org>
------------------------------------------------------------------
ID: OSA-2015-03
Date: 2015-11-24
Title: Vulnerability in OTRS FAQ allows user with valid agent login to inject _javascript_ code (XSS)
Severity: 3.7 (Low)
Fixed in: FAQ 5.0.2 (OTRS 5), FAQ 4.0.3 (OTRS 4), FAQ 2.3.4 (OTRS 3.3)
URL: https://www.otrs.com/security-advisory-2015-03-vulnerability-discovered-in-otrs-faq-package/
URL: https://www.otrs.com/security-advisory-2015-03-vulnerability-discovered-in-otrs-faq-package/
References: CVE-2015-8372
To read the entire Security Advisory please follow this link.
Best regards
Goran Pismestrovic
—
Marketing Assistant
OTRS AG
Norsk-Data-Straße 1
61352 Bad Homburg
Deutschland
T: +49 (0) 6172 681988 0
F: +49 (0) 9421 56818 18
I: http://www.otrs.com/
—
Marketing Assistant
OTRS AG
Norsk-Data-Straße 1
61352 Bad Homburg
Deutschland
T: +49 (0) 6172 681988 0
F: +49 (0) 9421 56818 18
I: http://www.otrs.com/
Business location: Bad Homburg, Country Court: Bad Homburg, HRB 10751, VAT ID: DE256610065
Chairman: Burchard Steinbild, Managing Board: André Mindermann (CEO), Christopher Kuhn, Sabine Riedel
Mobile communication and transparent processes - With the OTRS Business Solution™ 5 Managed you can start fast and without your own IT resources - Discover the new features and order here
Chairman: Burchard Steinbild, Managing Board: André Mindermann (CEO), Christopher Kuhn, Sabine Riedel
Mobile communication and transparent processes - With the OTRS Business Solution™ 5 Managed you can start fast and without your own IT resources - Discover the new features and order here
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail
OTRS mailing list: announce - Webpage: http://otrs.org/
Archive: http://lists.otrs.org/pipermail/announce
To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/announce
- [IT-SecNots] [announce] OTRS Security Advisory 2015-03 FAQ 5.0.2 (OTRS 5), FAQ 4.0.3. (OTRS 4), FAQ 2.3.4 (OTRS 3.3), Goran Pismestrovic, 01.12.2015
Archiv bereitgestellt durch MHonArc 2.6.19.