CVE-2010-3476

Name of the Vulnerable Software and Affected Versions Open Ticket Request System (OTRS) versions 2.3.x through 2.3.5 Open Ticket Request System (OTRS) versions 2.4.x through 2.4.7

Description The issue is related to the improper handling of Perl regular expressions against HTML e-mail messages. This can be exploited by remote attackers to cause a denial of service through CPU consumption by sending a large message.

Recommendations For OTRS versions 2.3.x through 2.3.5, update to version 2.3.6 or later. For OTRS versions 2.4.x through 2.4.7, update to version 2.4.8 or later.