Lucene search
HistoryJun 04, 2012 - 7:55 p.m.
CVE-2011-2084
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.0%
Best Practical Solutions RT 3.x before 3.8.12 and 4.x before 4.0.6 allows remote authenticated users to read (1) hashes of former passwords and (2) ticket correspondence history by leveraging access to a privileged account.
Affected configurations
Node
bestpracticalrtMatch3.0.0
ORbestpracticalrtMatch3.0.1
ORbestpracticalrtMatch3.0.2
ORbestpracticalrtMatch3.0.3
ORbestpracticalrtMatch3.0.4
ORbestpracticalrtMatch3.0.5
ORbestpracticalrtMatch3.0.6
ORbestpracticalrtMatch3.0.7
ORbestpracticalrtMatch3.0.7.1
ORbestpracticalrtMatch3.0.8
ORbestpracticalrtMatch3.0.9
ORbestpracticalrtMatch3.0.10
ORbestpracticalrtMatch3.0.10pre1
ORbestpracticalrtMatch3.0.10pre2
ORbestpracticalrtMatch3.0.10rc1
ORbestpracticalrtMatch3.0.11
ORbestpracticalrtMatch3.0.11rc2
ORbestpracticalrtMatch3.0.11rc3
ORbestpracticalrtMatch3.0.11rc4
ORbestpracticalrtMatch3.0.12
ORbestpracticalrtMatch3.1.2
ORbestpracticalrtMatch3.1.3
ORbestpracticalrtMatch3.1.4
ORbestpracticalrtMatch3.1.5
ORbestpracticalrtMatch3.1.6
ORbestpracticalrtMatch3.1.7
ORbestpracticalrtMatch3.1.8
ORbestpracticalrtMatch3.1.10
ORbestpracticalrtMatch3.1.11
ORbestpracticalrtMatch3.1.12
ORbestpracticalrtMatch3.1.13
ORbestpracticalrtMatch3.1.14
ORbestpracticalrtMatch3.1.15
ORbestpracticalrtMatch3.1.16
ORbestpracticalrtMatch3.1.17
ORbestpracticalrtMatch3.2.0
ORbestpracticalrtMatch3.2.0rc1
ORbestpracticalrtMatch3.2.0rc2
ORbestpracticalrtMatch3.2.0rc3
ORbestpracticalrtMatch3.2.0rc4
ORbestpracticalrtMatch3.2.1
ORbestpracticalrtMatch3.2.1rc1
ORbestpracticalrtMatch3.2.1rc2
ORbestpracticalrtMatch3.2.1rc3
ORbestpracticalrtMatch3.2.1rc4
ORbestpracticalrtMatch3.2.2
ORbestpracticalrtMatch3.2.2rc1
ORbestpracticalrtMatch3.2.3
ORbestpracticalrtMatch3.2.3rc1
ORbestpracticalrtMatch3.2.3rc2
ORbestpracticalrtMatch3.4.0
ORbestpracticalrtMatch3.4.0rc1
ORbestpracticalrtMatch3.4.0rc2
ORbestpracticalrtMatch3.4.0rc3
ORbestpracticalrtMatch3.4.0rc4
ORbestpracticalrtMatch3.4.0rc5
ORbestpracticalrtMatch3.4.0rc6
ORbestpracticalrtMatch3.4.1
ORbestpracticalrtMatch3.4.2
ORbestpracticalrtMatch3.4.2rc1
ORbestpracticalrtMatch3.4.2rc2
ORbestpracticalrtMatch3.4.3
ORbestpracticalrtMatch3.4.3rc1
ORbestpracticalrtMatch3.4.3rc2
ORbestpracticalrtMatch3.4.4
ORbestpracticalrtMatch3.4.4pre1
ORbestpracticalrtMatch3.4.4pre2
ORbestpracticalrtMatch3.4.4pre3
ORbestpracticalrtMatch3.4.5
ORbestpracticalrtMatch3.4.5pre1
ORbestpracticalrtMatch3.4.5rc1
ORbestpracticalrtMatch3.4.5rc2
ORbestpracticalrtMatch3.4.6
ORbestpracticalrtMatch3.4.6rc1
ORbestpracticalrtMatch3.4.6rc2
ORbestpracticalrtMatch3.4.7rc1
ORbestpracticalrtMatch3.5.1
ORbestpracticalrtMatch3.5.2
ORbestpracticalrtMatch3.5.3
ORbestpracticalrtMatch3.5.4
ORbestpracticalrtMatch3.5.5
ORbestpracticalrtMatch3.5.6
ORbestpracticalrtMatch3.5.7
ORbestpracticalrtMatch3.6.0
ORbestpracticalrtMatch3.6.0pre0
ORbestpracticalrtMatch3.6.0pre1
ORbestpracticalrtMatch3.6.0rc1
ORbestpracticalrtMatch3.6.0rc2
ORbestpracticalrtMatch3.6.0rc3
ORbestpracticalrtMatch3.6.1
ORbestpracticalrtMatch3.6.1pre2
ORbestpracticalrtMatch3.6.1rc1
ORbestpracticalrtMatch3.6.1rc2
ORbestpracticalrtMatch3.6.2
ORbestpracticalrtMatch3.6.2rc1
ORbestpracticalrtMatch3.6.2rc3
ORbestpracticalrtMatch3.6.2rc4
ORbestpracticalrtMatch3.6.2rc5
ORbestpracticalrtMatch3.6.3
ORbestpracticalrtMatch3.6.3rc1
ORbestpracticalrtMatch3.6.3rc2
ORbestpracticalrtMatch3.6.3rc3
ORbestpracticalrtMatch3.6.3rc4
ORbestpracticalrtMatch3.6.4
ORbestpracticalrtMatch3.6.4rc1
ORbestpracticalrtMatch3.6.4rc2
ORbestpracticalrtMatch3.6.5
ORbestpracticalrtMatch3.6.5rc1
ORbestpracticalrtMatch3.6.5rc2
ORbestpracticalrtMatch3.6.6
ORbestpracticalrtMatch3.6.6rc1
ORbestpracticalrtMatch3.6.6rc2
ORbestpracticalrtMatch3.6.6rc3
ORbestpracticalrtMatch3.6.7
ORbestpracticalrtMatch3.6.8
ORbestpracticalrtMatch3.6.9
ORbestpracticalrtMatch3.6.10
ORbestpracticalrtMatch3.7.1
ORbestpracticalrtMatch3.7.5
ORbestpracticalrtMatch3.7.80
ORbestpracticalrtMatch3.7.85
ORbestpracticalrtMatch3.7.86
ORbestpracticalrtMatch3.8.0
ORbestpracticalrtMatch3.8.0rc1
ORbestpracticalrtMatch3.8.0rc2
ORbestpracticalrtMatch3.8.0rc3
ORbestpracticalrtMatch3.8.1
ORbestpracticalrtMatch3.8.1rc1
ORbestpracticalrtMatch3.8.1rc2
ORbestpracticalrtMatch3.8.1rc3
ORbestpracticalrtMatch3.8.1rc4
ORbestpracticalrtMatch3.8.1rc5
ORbestpracticalrtMatch3.8.2
ORbestpracticalrtMatch3.8.2rc1
ORbestpracticalrtMatch3.8.2rc2
ORbestpracticalrtMatch3.8.3
ORbestpracticalrtMatch3.8.3rc1
ORbestpracticalrtMatch3.8.3rc2
ORbestpracticalrtMatch3.8.4
ORbestpracticalrtMatch3.8.4rc1
ORbestpracticalrtMatch3.8.5
ORbestpracticalrtMatch3.8.6
ORbestpracticalrtMatch3.8.6rc1
ORbestpracticalrtMatch3.8.7
ORbestpracticalrtMatch3.8.7rc1
ORbestpracticalrtMatch3.8.8
ORbestpracticalrtMatch3.8.8rc2
ORbestpracticalrtMatch3.8.8rc3
ORbestpracticalrtMatch3.8.8rc4
ORbestpracticalrtMatch3.8.9
ORbestpracticalrtMatch3.8.9rc1
ORbestpracticalrtMatch3.8.9rc2
ORbestpracticalrtMatch3.8.9rc3
ORbestpracticalrtMatch3.8.10
ORbestpracticalrtMatch3.8.11
Node
bestpracticalrtMatch3.8.12
ORbestpracticalrtMatch4.0.0
ORbestpracticalrtMatch4.0.0rc1
ORbestpracticalrtMatch4.0.0rc2
ORbestpracticalrtMatch4.0.0rc3
ORbestpracticalrtMatch4.0.0rc4
ORbestpracticalrtMatch4.0.0rc5
ORbestpracticalrtMatch4.0.0rc6
ORbestpracticalrtMatch4.0.0rc7
ORbestpracticalrtMatch4.0.0rc8
ORbestpracticalrtMatch4.0.1
ORbestpracticalrtMatch4.0.2
ORbestpracticalrtMatch4.0.3
ORbestpracticalrtMatch4.0.4
ORbestpracticalrtMatch4.0.5
Related
debiancve
debiancve
CVE-2011-2084
2012-06-04 19:55:01
cvelist
cvelist
CVE-2011-2084
2012-06-04 19:00:00
cve
cve
CVE-2011-2084
2012-06-04 19:55:01
ubuntucve
ubuntucve
CVE-2011-2084
2012-06-04 00:00:00
prion
prion
Design/Logic Flaw
2012-06-04 19:55:00
openvas
openvas
Fedora Update for rt3 FEDORA-2012-8339
2012-06-04 00:00:00
Fedora Update for rt3 FEDORA-2012-8363
2012-06-04 00:00:00
Fedora Update for rt3 FEDORA-2012-8363
2012-06-04 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: rt3-3.8.12-1.fc15
2012-06-02 03:52:20
[SECURITY] Fedora 16 Update: rt3-3.8.12-1.fc16
2012-06-02 03:58:24
[SECURITY] Fedora 17 Update: rt3-3.8.12-1.fc17
2012-06-01 16:53:44
freebsd
freebsd
RT -- Multiple Vulnerabilities
2012-05-22 00:00:00
osv
osv
request-tracker3.8 - regression
2012-09-15 00:00:00
request-tracker3.8 - several
2012-09-15 00:00:00
request-tracker3.8 - regression
2012-09-15 00:00:00
nessus
nessus
Debian DSA-2480-4 : request-tracker3.8 - several vulnerabilities
2012-06-29 00:00:00
Request Tracker 3.x < 3.8.12 / 4.x < 4.0.6 Multiple Vulnerabilities
2012-08-06 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 2480-1] request-tracker3.8 security update
2012-06-03 00:00:00
debian
debian
[SECURITY] [DSA 2480-1] request-tracker3.8 security update
2012-05-24 17:37:03
[BSA-071] Security Update for request-tracker4
2012-05-27 20:56:37
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
5.9 Medium
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
52.0%
Related for NVD:CVE-2011-2084