Lucene search
MitreCVE-2012-6579HistoryJul 24, 2013 - 12:01 p.m.
CVE-2012-6579
2013-07-2412:01:45
CWE-310
mitre
web.nvd.nist.gov
25
cve-2012-6579
best practical solutions
rt 3.8.x
rt 4.0.x
gnupg
encryption
signing
email readability
denial of service
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
51.1%
Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to configure encryption or signing for certain outbound e-mail, and possibly cause a denial of service (loss of e-mail readability), via an e-mail message to a queue’s address.
Affected configurations
Node
bestpracticalrequest_trackerMatch3.8.3
ORbestpracticalrequest_trackerMatch3.8.4
ORbestpracticalrequest_trackerMatch3.8.7
ORbestpracticalrequest_trackerMatch3.8.9
ORbestpracticalrequest_trackerMatch3.8.10
ORbestpracticalrequest_trackerMatch3.8.11
ORbestpracticalrequest_trackerMatch3.8.12
ORbestpracticalrequest_trackerMatch3.8.13
ORbestpracticalrequest_trackerMatch3.8.14
Node
bestpracticalrequest_trackerMatch4.0.0
ORbestpracticalrequest_trackerMatch4.0.1
ORbestpracticalrequest_trackerMatch4.0.2
ORbestpracticalrequest_trackerMatch4.0.3
ORbestpracticalrequest_trackerMatch4.0.4
ORbestpracticalrequest_trackerMatch4.0.5
ORbestpracticalrequest_trackerMatch4.0.6
ORbestpracticalrequest_trackerMatch4.0.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bestpractical | request_tracker | 3.8.3 | cpe:2.3:a:bestpractical:request_tracker:3.8.3:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.4 | cpe:2.3:a:bestpractical:request_tracker:3.8.4:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.7 | cpe:2.3:a:bestpractical:request_tracker:3.8.7:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.9 | cpe:2.3:a:bestpractical:request_tracker:3.8.9:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.10 | cpe:2.3:a:bestpractical:request_tracker:3.8.10:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.11 | cpe:2.3:a:bestpractical:request_tracker:3.8.11:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.12 | cpe:2.3:a:bestpractical:request_tracker:3.8.12:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.13 | cpe:2.3:a:bestpractical:request_tracker:3.8.13:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 3.8.14 | cpe:2.3:a:bestpractical:request_tracker:3.8.14:*:*:*:*:*:*:* |
| bestpractical | request_tracker | 4.0.0 | cpe:2.3:a:bestpractical:request_tracker:4.0.0:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2012-6579
2013-07-24 00:00:00
prion
prion
Design/Logic Flaw
2013-07-24 12:01:00
cvelist
cvelist
CVE-2012-6579
2013-07-24 10:00:00
nvd
nvd
CVE-2012-6579
2013-07-24 12:01:45
CVE-2012-4735
2013-07-24 12:01:44
debiancve
debiancve
CVE-2012-6579
2013-07-24 12:01:45
cve
cve
CVE-2012-4735
2013-07-24 12:01:44
openvas
openvas
Debian: Security Advisory (DSA-2567-1)
2012-10-29 00:00:00
osv
osv
request-tracker3.8 - several
2012-10-26 00:00:00
nessus
nessus
Debian DSA-2567-1 : request-tracker3.8 - several vulnerabilities
2012-10-29 00:00:00
Fedora 18 : rt3-3.8.15-1.fc18 (2012-17143)
2012-11-08 00:00:00
Fedora 16 : rt3-3.8.15-1.fc16 (2012-17218)
2012-11-08 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
AI Score
6.7
Confidence
Low
EPSS
0.001
Percentile
51.1%
Related for CVE-2012-6579