FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

rt -- Remote DoS, Information disclosure and Session Hijackingvulnerabilities

Affected packages
4.2.0 <= rt42 < 4.2.10
4.0.0 <= rt40 < 4.0.23

Details

VuXML ID d08f6002-c588-11e4-8495-6805ca0b3d42
Discovery 2015-02-26
Entry 2015-03-08

Best Practical reports:

RT 3.0.0 and above, if running on Perl 5.14.0 or higher, are vulnerable to a remote denial-of-service via the email gateway; any installation which accepts mail from untrusted sources is vulnerable, regardless of the permissions configuration inside RT. This denial-of-service may encompass both CPU and disk usage, depending on RT's logging configuration. This vulnerability is assigned CVE-2014-9472.

RT 3.8.8 and above are vulnerable to an information disclosure attack which may reveal RSS feeds URLs, and thus ticket data; this vulnerability is assigned CVE-2015-1165. RSS feed URLs can also be leveraged to perform session hijacking, allowing a user with the URL to log in as the user that created the feed; this vulnerability is assigned CVE-2015-1464.

References

CVE Name CVE-2014-9472
CVE Name CVE-2015-1165
CVE Name CVE-2015-1464
URL http://blog.bestpractical.com/2015/02/security-vulnerabilities-in-rt.html