Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0884

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2001-0884
Last Modified 05 Sep 2008 04:25:08
Published 21 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2001-0884

Summary

Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.

Vulnerable Systems

Application

  • Gnu Mailman

  • Gnu Mailman 5.0

  • Gnu Mailman 5.1

  • Gnu Mailman 6.0

  • Gnu Mailman 7.0


References

BUGTRAQ - 20011128 Cgisecurity.com Advisory #7: Mailman Email Archive Cross Site Scripting

CONECTIVA - CLA-2001:445

XF - mailman-java-css(7617)

BID - 3602

REDHAT - RHSA-2001:170

REDHAT - RHSA-2001:169

REDHAT - RHSA-2001:168


Last Updated: 27 May 2016 10:36:26