DoS attack can be performed when an email contains specially designed URL in the body. It can lead to the high CPU usage and cause low quality of service, or in extreme case bring the system to a halt. This issue affects: OTRS AG ((OTRS)) Community Edition 6.0.x version 6.0.1 and later versions. OTRS AG OTRS 7.0.x version 7.0.26 and prior versions; 8.0.x version 8.0.13 and prior versions.
The product does not handle or incorrectly handles an exceptional condition.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Otrs | Otrs | 6.0.1 (including) | 6.0.30 (including) |
Otrs | Otrs | 7.0.0 (including) | 7.0.27 (excluding) |
Otrs | Otrs | 8.0.0 (including) | 8.0.14 (excluding) |
Otrs2 | Ubuntu | bionic | * |
Otrs2 | Ubuntu | groovy | * |
Otrs2 | Ubuntu | hirsute | * |
Otrs2 | Ubuntu | impish | * |
Otrs2 | Ubuntu | trusty | * |
Otrs2 | Ubuntu | xenial | * |