|
Family: CGI abuses --> Category: mixed
osTicket Large Attachment Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for Large Attachment Vulnerability in osTicket
Detailed Explanation for this Vulnerability Test
The target is running at least one instance of osTicket that enables a
remote user to a open new ticket with an attachment of unlimited size.
A possible hacker could exploit this vulnerability and cause a denial of
service by filling up the filesystem used for attachments.
Solution : Upgrade to osTicket STS 1.2.7 or later.
Threat Level: Low
Click HERE for more information and discussions on this network vulnerability scan.
|