Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0965

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2003-0965
Last Modified 10 Sep 2008 03:21:00
Published 17 Feb 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2003-0965

Summary

Cross-site scripting (XSS) vulnerability in the admin CGI script for Mailman before 2.1.4 allows remote attackers to steal session cookies and conduct unauthorized activities.

Vulnerable Systems

Application

  • Gnu Mailman 2.1.4


References

REDHAT - RHSA-2004:020

MLIST - [Mailman-Announce] 20031231 RELEASED Mailman 2.1.4

XF - mailman-admin-xss(14121)

BID - 9336

DEBIAN - DSA-436

OSVDB - 3305

MANDRAKE - MDKSA-2004:013

SECUNIA - 10519

CONECTIVA - CLA-2004:842


Last Updated: 27 May 2016 10:38:06