Argument Injection Vulnerability in Request Tracker by Best Practical
CVE-2012-4884

Currently unrated

Key Information:

Vendor: Bestpractical
Status: Rt
Vendor: CVE Published:; 11 November 2012

🔔 Create Bestpractical Vulnerability Alert

What is CVE-2012-4884?

An argument injection vulnerability exists in Request Tracker (RT) versions 3.8.x prior to 3.8.15 and 4.0.x prior to 4.0.8. This flaw allows remote attackers to exploit unspecified vectors related to the GnuPG client, leading to the creation of arbitrary files on the system. Such vulnerabilities can potentially compromise the integrity and security of the affected systems, making it crucial for users to update to the patched versions to mitigate risks.

References

http://lists.bestpractical.com/pipermail/rt-announce/2012...

mailing-listx_refsource_MLIST

http://www.debian.org/security/2012/dsa-2567

vendor-advisoryx_refsource_DEBIAN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 11, 2012

CVE-2012-4884 Data

JSON