Back to search
CVE-2013-3374
Published: Aug 23, 2013
Modified: Sep 17, 2024
PUBLISHED
Description
Unspecified vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13, when using the Apache::Session::File session store, allows remote attackers to obtain sensitive information (user preferences and caches) via unknown vectors, related to a "limited session re-use."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[rt-announce] 20130522 RT 3.8.17 released
mailing-list
x_refsource_MLIST
[rt-announce] 20130522 Security vulnerabilities in RT
mailing-list
x_refsource_MLIST
[rt-announce] 20130522 RT 4.0.13 released
mailing-list
x_refsource_MLIST
53505
third-party-advisory
x_refsource_SECUNIA
DSA-2670
vendor-advisory
x_refsource_DEBIAN
53522
third-party-advisory
x_refsource_SECUNIA
93605
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now