Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2191

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2191
Last Modified 05 Sep 2008 05:03:54
Published 19 Sep 2006 05:07:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2191

Summary

** DISPUTED ** Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. NOTE: the vendor has disputed this vulnerability, stating that it is "unexploitable."

Vulnerable Systems

Application

  • Gnu Mailman 2.1.8


References

MLIST - [Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9

MLIST - [security] 20060906 Re: mailman 2.1.5-8sarge3: screwup between security and maintainer upload

SUSE - SUSE-SR:2006:025

SECUNIA - 22639


Last Updated: 27 May 2016 10:42:22