{"id":"CVE-2010-3476","details":"Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x before 2.4.8 does not properly handle the matching of Perl regular expressions against HTML e-mail messages, which allows remote attackers to cause a denial of service (CPU consumption) via a large message, a different vulnerability than CVE-2010-2080.","modified":"2026-04-10T03:41:25.117706Z","published":"2010-09-20T22:00:04Z","references":[{"type":"ADVISORY","url":"http://otrs.org/advisory/OSA-2010-02-en/"},{"type":"ADVISORY","url":"http://secunia.com/advisories/41381"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html"},{"type":"WEB","url":"http://security-tracker.debian.org/tracker/CVE-2010-2080"},{"type":"WEB","url":"http://www.securityfocus.com/bid/43264"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/61869"}],"schema_version":"1.7.5"}