30. 09. 2015
EriZone Security Advisory
Two new packages have been published to overcome the following two vulnerabilities of the OTRS framework on which EriZone is based:
Security Advisory 2015-02: Scheduler Process ID File Access
Security Advisory 2015-01: Vulnerability in OTRS iPhoneHandle interface allows user with valid session privilege escalation
The packages have been published for the EriZone releases 3.1, 3.2 and 3.3
Please install the package EriZonePatches. If you have already installed the iPhoneHandle package, please update it to the new 1.3.3 version.
You can do that through the Agent web interface in the System Administration area.
Follow the sequence:
- Update the Package Manager repository information
- Install the EriZonePatches package
- Update the iPhoneHandle package (if it has been already installed)
- Execute the following actions from the command line:
Contact our support team if you do not feel comfortable on any operation email@example.com
or +39 0471 564101
Latest posts by MarinovMihail