PT-2012-1887 · Best Practical Solutions+5 · Request Tracker+2

Published

2012-06-04

Updated

2012-09-29

CVE-2011-4458

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Best Practical Solutions RT 3.6.x, 3.7.x, and 3.8.x before 3.8.12 and 4.x before 4.0.6, when the VERPPrefix and VERPDomain options are enabled, allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2011-5092 and CVE-2011-5093.

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2011-4458

DSA-2480-1

Affected Products

Request Tracker

Request-Tracker4

PT-2012-1887 · Best Practical Solutions+5 · Request Tracker+2

CVE-2011-4458

Weakness Enumeration

Related Identifiers

Affected Products

References · 10