1. Home
  2. CVE Database
  3. CVE-2014-9472
HIGH · 7.1

CVE-2014-9472

The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted emai...

Vulnerability Description

The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted email.

CVSS Score

7.1

HIGH

AV:N/AC:M/Au:N/C:N/I:N/A:C
Confidentiality
NONE
Integrity
NONE
Availability
COMPLETE

Affected Products

VendorProductVersions
DebianDebian Linux7.0
FedoraprojectFedora21
BestpracticalRequest Tracker3.6.8

Related Weaknesses (CWE)

CWE-399

References

FAQ

What is CVE-2014-9472?

CVE-2014-9472 is a vulnerability with a CVSS score of 7.1 (HIGH). The email gateway in RT (aka Request Tracker) 3.0.0 through 4.x before 4.0.23 and 4.2.x before 4.2.10 allows remote attackers to cause a denial of service (CPU and disk consumption) via a crafted emai...

How severe is CVE-2014-9472?

CVE-2014-9472 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2014-9472?

Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Fedoraproject Fedora, Bestpractical Request Tracker.