Candidate: CVE-2014-2554
PublicDate: 2014-04-23 15:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2554
 https://www.otrs.com/security-advisory-2014-05-clickjacking-issue/
Description:
 OTRS 3.1.x before 3.1.21, 3.2.x before 3.2.16, and 3.3.x before 3.3.6
 allows remote attackers to conduct clickjacking attacks via an IFRAME
 element.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by: Adam Ziaja
Assigned-to:
CVSS: 

Patches_otrs2:
upstream_otrs2: released (3.3.6-1)
lucid_otrs2: ignored (reached end-of-life)
precise_otrs2: ignored (reached end-of-life)
precise/esm_otrs2: DNE (precise was needed)
quantal_otrs2: ignored (reached end-of-life)
saucy_otrs2: ignored (reached end-of-life)
trusty_otrs2: ignored (reached end-of-life)
trusty/esm_otrs2: DNE (trusty was needed)
utopic_otrs2: not-affected (3.3.6-1)
vivid_otrs2: not-affected (3.3.6-1)
vivid/stable-phone-overlay_otrs2: DNE
vivid/ubuntu-core_otrs2: DNE
wily_otrs2: not-affected (3.3.6-1)
xenial_otrs2: not-affected (3.3.6-1)
yakkety_otrs2: not-affected (3.3.6-1)
zesty_otrs2: not-affected (3.3.6-1)
artful_otrs2: not-affected (3.3.6-1)
bionic_otrs2: not-affected (3.3.6-1)
cosmic_otrs2: not-affected (3.3.6-1)
disco_otrs2: not-affected (3.3.6-1)
devel_otrs2: not-affected (3.3.6-1)