Best Practical Solutions RT 3.8.x before 3.8.15 and 4.0.x before 4.0.8, when GnuPG is enabled, allows remote attackers to configure encryption or signing for certain outbound e-mail, and possibly cause a denial of service (loss of e-mail readability), via an e-mail message to a queues address.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Request_tracker | Bestpractical | 3.8.7 | 3.8.7 |
Request_tracker | Bestpractical | 3.8.14 | 3.8.14 |
Request_tracker | Bestpractical | 3.8.9 | 3.8.9 |
Request_tracker | Bestpractical | 3.8.10 | 3.8.10 |
Request_tracker | Bestpractical | 3.8.13 | 3.8.13 |
Request_tracker | Bestpractical | 3.8.11 | 3.8.11 |
Request_tracker | Bestpractical | 3.8.12 | 3.8.12 |
Request_tracker | Bestpractical | 3.8.4 | 3.8.4 |
Request_tracker | Bestpractical | 3.8.3 | 3.8.3 |