Security Advisory 2011-03

August 16, 2011 -- Please read carefully and check if the version of your OTRS system is affected by this vulnerability.

 

Security Advisory Details

  • Date: Aug 16, 2011
  • Title: Vulnerabilities in OTRS-Core allows read access to any file on local file system
  • Severity: Moderate
  • Affected:
    • OTRS Help Desk 2.1.x
    • OTRS Help Desk 2.2.x
    • OTRS Help Desk 2.3.x
    • OTRS Help Desk 2.4.x
    • OTRS Help Desk 3.0.1-9
  • Fixed in:
    • OTRS Help Desk 2.4.11
    • OTRS Help Desk 3.0.10
  • Download a fixed release
  • Common Vulnerabilities and Exposures: CVE-2011-2746
 
 
 

 

Vulnerability Description

Vulnerabilities in the core of OTRS allows read access to any file on a local file system. An attacker with valid session and admin permissions could get read access to any file on a servers local operating system. At least one of the mentioned OTRS packages would be required to be installed to do this.

 
 
 
 

Recommended Resolution

This vulnerability is fixed in OTRS 2.4.11 and OTRS 3.0.10, and it is recommended to upgrade to one of these higher versions.

Workaround

Next to upgrading to the mentioned fixed releases, a workaround is to replace the following files with a fixed version:

OTRS Help Desk 2.1.x:

  • Kernel/Modules/AdminPackageManager.pm 1.39.2.2

OTRS Help Desk 2.2.x:

  • Kernel/Modules/AdminPackageManager.pm 1.46.2.6

OTRS Help Desk 2.3.x:

  • Kernel/Modules/AdminPackageManager.pm 1.65.2.8

OTRS Help Desk 2.4.x:

  • Kernel/Modules/AdminPackageManager.pm 1.81.2.4

OTRS Help Desk 3.0.x:

  • Kernel/Modules/AdminPackageManager.pm 1.98.2.2

These files are also available on http://source.otrs.org/.

 

Report a Vulnerability

security@otrs.org