5

CVE-2006-0052

EPSS 6.41%
Veröffentlicht 31.03.2006 11:06:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle security@debian.org
CVE-Watchlists
Login
Unerledigt
Login

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 19

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Gnu ≫ Mailman Version1.0

Gnu ≫ Mailman Version1.1

Gnu ≫ Mailman Version2.0

Gnu ≫ Mailman Version2.0 Updatebeta3

Gnu ≫ Mailman Version2.0 Updatebeta4

Gnu ≫ Mailman Version2.0 Updatebeta5

Gnu ≫ Mailman Version2.0.1

Gnu ≫ Mailman Version2.0.2

Gnu ≫ Mailman Version2.0.3

Gnu ≫ Mailman Version2.0.4

Gnu ≫ Mailman Version2.0.5

Gnu ≫ Mailman Version2.0.6

Gnu ≫ Mailman Version2.0.7

Gnu ≫ Mailman Version2.0.8

Gnu ≫ Mailman Version2.0.9

Gnu ≫ Mailman Version2.0.10

Gnu ≫ Mailman Version2.0.11

Gnu ≫ Mailman Version2.0.12

Gnu ≫ Mailman Version2.0.13

Gnu ≫ Mailman Version2.0.14

Gnu ≫ Mailman Version2.1

Gnu ≫ Mailman Version2.1.1

Gnu ≫ Mailman Version2.1.2

Gnu ≫ Mailman Version2.1.3

Gnu ≫ Mailman Version2.1.4

Gnu ≫ Mailman Version2.1.5

Gnu ≫ Mailman Version2.1b1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	6.41%	0.905

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc

http://secunia.com/advisories/20782

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892

Patch

http://secunia.com/advisories/19522

http://secunia.com/advisories/19545

http://secunia.com/advisories/19571

http://secunia.com/advisories/20624

http://securitytracker.com/id?1015851

http://www.debian.org/security/2006/dsa-1027

http://www.mandriva.com/security/advisories?name=MDKSA-2006:061

http://www.novell.com/linux/security/advisories/2006_08_sr.html

http://www.osvdb.org/24367

http://www.redhat.com/support/errata/RHSA-2006-0486.html

http://www.securityfocus.com/bid/17311

Patch

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475

https://usn.ubuntu.com/267-1/

https://nvd.nist.gov/vuln/detail/CVE-2006-0052

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2006-0052

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2006-0052

EUVD