CVE

Id
63321  
CVE No.
CVE-2013-3374  
Status
Candidate  
Description
Unspecified vulnerability in Request Tracker (RT) 3.8.x before 3.8.17 and 4.0.x before 4.0.13, when using the Apache::Session::File session store, allows remote attackers to obtain sensitive information (user preferences and caches) via unknown vectors, related to a "limited session re-use."  
Phase
Assigned (20130506)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
629158 63321 CVE-2013-3374 MLIST:[rt-announce] 20130522 RT 3.8.17 released  View
629159 63321 CVE-2013-3374 URL:http://lists.bestpractical.com/pipermail/rt-announce/2013-May/000228.html  View
629160 63321 CVE-2013-3374 MLIST:[rt-announce] 20130522 RT 4.0.13 released  View
629161 63321 CVE-2013-3374 URL:http://lists.bestpractical.com/pipermail/rt-announce/2013-May/000227.html  View
629162 63321 CVE-2013-3374 MLIST:[rt-announce] 20130522 Security vulnerabilities in RT  View
629163 63321 CVE-2013-3374 URL:http://lists.bestpractical.com/pipermail/rt-announce/2013-May/000226.html  View
629164 63321 CVE-2013-3374 DEBIAN:DSA-2670  View
629165 63321 CVE-2013-3374 URL:http://www.debian.org/security/2012/dsa-2670  View
629166 63321 CVE-2013-3374 OSVDB:93605  View
629167 63321 CVE-2013-3374 URL:http://www.osvdb.org/93605  View
629168 63321 CVE-2013-3374 SECUNIA:53505  View
629169 63321 CVE-2013-3374 URL:http://secunia.com/advisories/53505  View
629170 63321 CVE-2013-3374 SECUNIA:53522  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
21520 JVNDB-2013-003095 Cisco TelePresence TC Software におけるルート権限のシェルアクセスを取得される脆弱性 Cisco TelePresence TC Software のファイアウォールサブシステムには、ホストへのアクセス許可を適切に実装していないため、ルート権限のシェルアクセスを取得される脆弱性が存在します。 CVE-2013-3379 63321 8.3 http://jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-003095.html  View