5

CVE-2006-0052

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
GnuMailman Version1.0
GnuMailman Version1.1
GnuMailman Version2.0
GnuMailman Version2.0 Updatebeta3
GnuMailman Version2.0 Updatebeta4
GnuMailman Version2.0 Updatebeta5
GnuMailman Version2.0.1
GnuMailman Version2.0.2
GnuMailman Version2.0.3
GnuMailman Version2.0.4
GnuMailman Version2.0.5
GnuMailman Version2.0.6
GnuMailman Version2.0.7
GnuMailman Version2.0.8
GnuMailman Version2.0.9
GnuMailman Version2.0.10
GnuMailman Version2.0.11
GnuMailman Version2.0.12
GnuMailman Version2.0.13
GnuMailman Version2.0.14
GnuMailman Version2.1
GnuMailman Version2.1.1
GnuMailman Version2.1.2
GnuMailman Version2.1.3
GnuMailman Version2.1.4
GnuMailman Version2.1.5
GnuMailman Version2.1b1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.64% 0.836
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:N/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc
http://secunia.com/advisories/20782
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892
Patch
http://secunia.com/advisories/19522
http://secunia.com/advisories/19545
http://secunia.com/advisories/19571
http://secunia.com/advisories/20624
http://securitytracker.com/id?1015851
http://www.debian.org/security/2006/dsa-1027
http://www.mandriva.com/security/advisories?name=MDKSA-2006:061
http://www.novell.com/linux/security/advisories/2006_08_sr.html
http://www.osvdb.org/24367
http://www.redhat.com/support/errata/RHSA-2006-0486.html
http://www.securityfocus.com/bid/17311
Patch
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475
https://usn.ubuntu.com/267-1/