CVE-2017-17476
Description
Open Ticket Request System (OTRS) 4.0.x before 4.0.28, 5.0.x before 5.0.26, and 6.0.x before 6.0.3, when cookie support is disabled, might allow remote attackers to hijack web sessions and consequently gain privileges via a crafted email.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2017-17476
Vendor advisory: cve@mitre.org — https://www.otrs.com/security-advisory-2017-10-security-update-otrs-framework/
Vendor advisory: cve@mitre.org — https://github.com/OTRS/otrs/commit/720c73fbf53e476ca7dfdf2ae1d4d3d2aad2b953
Vendor advisory: cve@mitre.org — https://github.com/OTRS/otrs/commit/36e3be99cfe8a9e09afa1b75fdc39f3e28f561fc
Vendor advisory: cve@mitre.org — https://github.com/OTRS/otrs/commit/26707eaaa791648e6c7ad6aeaa27efd70e7c66eb
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| debian | 7.0 | affected | |
| debian | 8.0 | affected | |
| debian | 9.0 | affected | |
| debian | bullseye | fixed | 6.0.3-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| otrs | otrs | {"startIncluding":"4.0.0","endExcluding":"4.0.28"} | 4.0.28 |
References
- https://github.com/OTRS/otrs/commit/26707eaaa791648e6c7ad6aeaa27efd70e7c66eb
- https://github.com/OTRS/otrs/commit/36e3be99cfe8a9e09afa1b75fdc39f3e28f561fc
- https://github.com/OTRS/otrs/commit/720c73fbf53e476ca7dfdf2ae1d4d3d2aad2b953
- https://lists.debian.org/debian-lts-announce/2017/12/msg00018.html
- https://www.debian.org/security/2017/dsa-4069
- https://www.otrs.com/security-advisory-2017-10-security-update-otrs-framework/
- https://security-tracker.debian.org/tracker/CVE-2017-17476
CWEs
CWE-200
Verify integrity in audit chain (admin only). AS-IS.