CVE-2011-1687

Published: Apr 22, 2011

Modified: Aug 6, 2024

PUBLISHED

Description

Best Practical Solutions RT 3.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allows remote authenticated users to obtain sensitive information by using the search interface, as demonstrated by retrieving encrypted passwords.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ADV-2011-1071

vdb-entry

x_refsource_VUPEN

[rt-announce] 20110414 RT 3.8.10 Released - Security Release

mailing-list

x_refsource_MLIST

https://bugzilla.redhat.com/show_bug.cgi?id=696795

x_refsource_CONFIRM

rt-search-interface-info-disclosure(66793)

vdb-entry

x_refsource_XF

http://blog.bestpractical.com/2011/04/security-vulnerabilities-in-rt.html

x_refsource_CONFIRM

47383

vdb-entry

x_refsource_BID

[rt-announce] 20110414 Security vulnerabilities in RT

mailing-list

x_refsource_MLIST

[rt-announce] 20110414 RT 3.6.11 Released - Security Release

mailing-list

x_refsource_MLIST

DSA-2220

vendor-advisory

x_refsource_DEBIAN

44189

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2011-1687

Description

Affected Products

References