+++++++++ OTRS Security Advisory 2015-01 OTRS PhoneHandle 4.0.x (OTRS 4) iPhoneHandle 1.3.x (OTRS 3.3), iPhoneHandle 1.2.x (OTRS 3.2) +++++++++

Releases: iPhoneHandle 4.0.2 (OTRS 4), iPhoneHandle 1.3.3 (OTRS 3.3), iPhoneHandle 1.2.2 (OTRS 3.2)
Release date: 29-September-2015

Status: Patch Level Release

SECURITY FIXES:

==============

------------------------------------------------------------------

OTRS Security Advisory 2015-01 <security at otrs.org>

------------------------------------------------------------------

ID: OSA-2015-01

Date: 2015-09-29

Title: Vulnerability in OTRS iPhoneHandle interface allows user with valid session privilege escalation

Severity: high (Overall CVSS Score: 7)

Fixed in: iPhoneHandle 4.0.2 (OTRS 4), iPhoneHandle 1.3.3 (OTRS 3.3), iPhoneHandle 1.2.2 (OTRS 3.2)
URL: https://www.otrs.com/security-advisory-2015-01-vulnerability-in-otrs-iphone-handle/

References: CVE: CVE-2015-6579

To read the entire Security Advisory please follow this link.

https://www.otrs.com/security-advisory-2015-01-vulnerability-in-otrs-iphone-handle/

Best regards

Annalena Navarro von Starck

Marketing Manager

OTRS AG
Norsk-Data-Straße 1
61352 Bad Homburg
Deutschland

T: +49 (0) 6172 681988-21
F: +49 (0) 9421 56818 18
I: http://www.otrs.com/

Geschäftssitz: Bad Homburg, Amtsgericht: Bad Homburg, HRB 10751, USt.ID: DE256610065

Aufsichtsratsvorsitzender: Burchard Steinbild, Vorstand: André Mindermann (Vorsitzender), Christopher Kuhn, Sabine Riedel

Mobile Kommunikation und transparente Prozesse mit der OTRS Business Solution™ 5 - Preview auf der IT&Business vom 29.09.-01.10.2015 in Stuttgart - Registrieren Sie sich hier für eine Freikarte