CVE-2011-0707
Vulnerability from cvelistv5
Published
2011-02-22 18:00
Modified
2024-08-06 21:58
Severity ?
EPSS score ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T21:58:26.088Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "ADV-2011-0487",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0487"
},
{
"name": "FEDORA-2011-2102",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html"
},
{
"name": "RHSA-2011:0307",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html"
},
{
"name": "70936",
"tags": [
"vdb-entry",
"x_refsource_OSVDB",
"x_transferred"
],
"url": "http://osvdb.org/70936"
},
{
"name": "43294",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43294"
},
{
"name": "ADV-2011-0720",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0720"
},
{
"name": "SUSE-SR:2011:009",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"
},
{
"name": "ADV-2011-0435",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0435"
},
{
"name": "ADV-2011-0460",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0460"
},
{
"name": "openSUSE-SU-2011:0424",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html"
},
{
"name": "DSA-2170",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2011/dsa-2170"
},
{
"name": "[mailman-announce] 20110213 Mailman Security Patch Announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html"
},
{
"name": "USN-1069-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "http://www.ubuntu.com/usn/USN-1069-1"
},
{
"name": "RHSA-2011:0308",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html"
},
{
"name": "ADV-2011-0436",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0436"
},
{
"name": "APPLE-SA-2011-10-12-3",
"tags": [
"vendor-advisory",
"x_refsource_APPLE",
"x_transferred"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "MDVSA-2011:036",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA",
"x_transferred"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036"
},
{
"name": "[mailman-announce] 20110218 Mailman Security Patch Announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html"
},
{
"name": "46464",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/46464"
},
{
"name": "1025106",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id?1025106"
},
{
"name": "43829",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43829"
},
{
"name": "43425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43425"
},
{
"name": "ADV-2011-0542",
"tags": [
"vdb-entry",
"x_refsource_VUPEN",
"x_transferred"
],
"url": "http://www.vupen.com/english/advisories/2011/0542"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "43389",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43389"
},
{
"name": "mailman-fullname-xss(65538)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538"
},
{
"name": "FEDORA-2011-2125",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html"
},
{
"name": "43580",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43580"
},
{
"name": "FEDORA-2011-2030",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html"
},
{
"name": "43549",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA",
"x_transferred"
],
"url": "http://secunia.com/advisories/43549"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2011-02-18T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-08-16T14:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "ADV-2011-0487",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0487"
},
{
"name": "FEDORA-2011-2102",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html"
},
{
"name": "RHSA-2011:0307",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html"
},
{
"name": "70936",
"tags": [
"vdb-entry",
"x_refsource_OSVDB"
],
"url": "http://osvdb.org/70936"
},
{
"name": "43294",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43294"
},
{
"name": "ADV-2011-0720",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0720"
},
{
"name": "SUSE-SR:2011:009",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"
},
{
"name": "ADV-2011-0435",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0435"
},
{
"name": "ADV-2011-0460",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0460"
},
{
"name": "openSUSE-SU-2011:0424",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html"
},
{
"name": "DSA-2170",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2011/dsa-2170"
},
{
"name": "[mailman-announce] 20110213 Mailman Security Patch Announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html"
},
{
"name": "USN-1069-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "http://www.ubuntu.com/usn/USN-1069-1"
},
{
"name": "RHSA-2011:0308",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html"
},
{
"name": "ADV-2011-0436",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0436"
},
{
"name": "APPLE-SA-2011-10-12-3",
"tags": [
"vendor-advisory",
"x_refsource_APPLE"
],
"url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
},
{
"name": "MDVSA-2011:036",
"tags": [
"vendor-advisory",
"x_refsource_MANDRIVA"
],
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036"
},
{
"name": "[mailman-announce] 20110218 Mailman Security Patch Announcement",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html"
},
{
"name": "46464",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/46464"
},
{
"name": "1025106",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id?1025106"
},
{
"name": "43829",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43829"
},
{
"name": "43425",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43425"
},
{
"name": "ADV-2011-0542",
"tags": [
"vdb-entry",
"x_refsource_VUPEN"
],
"url": "http://www.vupen.com/english/advisories/2011/0542"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://support.apple.com/kb/HT5002"
},
{
"name": "43389",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43389"
},
{
"name": "mailman-fullname-xss(65538)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538"
},
{
"name": "FEDORA-2011-2125",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html"
},
{
"name": "43580",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43580"
},
{
"name": "FEDORA-2011-2030",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html"
},
{
"name": "43549",
"tags": [
"third-party-advisory",
"x_refsource_SECUNIA"
],
"url": "http://secunia.com/advisories/43549"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2011-0707",
"datePublished": "2011-02-22T18:00:00",
"dateReserved": "2011-01-31T00:00:00",
"dateUpdated": "2024-08-06T21:58:26.088Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2011-0707\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2011-02-22T19:00:02.287\",\"lastModified\":\"2024-11-21T01:24:39.527\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados(XSS) en CGI/confirm.py en GNU Mailman v2.1.14 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del campo (1) nombre completo o (2) nombre de usuario en un mensaje de confirmaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.1.14\",\"matchCriteriaId\":\"D7400C28-5080-48B9-A2B8-30187FA7ADBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46CF8999-445E-4E03-89F1-81669F9F93D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D965E3E-E08C-40EA-AF66-470F473F0262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64179C1D-C96F-431F-AD80-CBCA77CB9E53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC6B30F6-70A8-43C7-BA5C-6DD8A6ED829D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"767101D3-ABB0-4D34-AA28-75F78A392F39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEB60D06-E9D0-4949-8542-334D180F491D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F884774-D1A1-42A6-A3FE-9B0500725666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C56B981-FD66-46F2-806A-3FFDEC520482\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E3E1994-6CAC-48E9-8438-0D894A76FE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8742B0-A91D-457D-BF57-06AFC5219BF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F04EDBE-4B04-4B4C-A2BE-5286AC7C8952\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615566E3-9EBD-49B3-9727-0883D3F0334B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F59D0CCF-3CD0-4D99-B1F1-38F331422801\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FADF5CE8-D072-4CFE-8A96-BA86187B478B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72278005-5F2A-4459-8813-DF7EC2D1F063\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E39A909-E266-4BA9-87C6-DE26052433E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABA16FD9-0625-4D3D-9F10-130A28C88DA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE33EFBF-E155-4C3B-93CC-63AA1266A8A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78F2FB70-7EB9-4AA7-9E85-C151C3CC8104\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47F9AC7B-C0EB-4B7F-8997-1491301D0EF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1D6A976-FFEA-4DB6-B002-8036E778C78E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"33DA97C8-532B-442C-94B4-69D10A81EDA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9908375-B974-4238-B839-0E548A92DCDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:stable:*:*:*:*:*:*\",\"matchCriteriaId\":\"4738B8CB-AE25-4491-8C6F-BBCA47F72D19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8894855-E303-4B55-B3BC-DCBE3A0AB703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D3AFFFD-1BDC-4511-9DA0-56ACD337F56C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B1500D8-952A-46C6-920C-096760C36A43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"503D7346-4891-40B1-A0CD-0FACC5359431\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"643610C6-99A9-43C9-A8FC-463A244C08DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45C53260-503F-4934-B1FE-9FACD8E0EE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C670F583-6B60-4D80-A75F-CD53FDDF27D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A34CBFC5-CB18-4FE4-9B4D-F3280CBCCD6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA788EB3-E162-4752-984D-5601A8C6C770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2571330-3239-469E-883D-8994257D0C55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F27323B-6B10-4941-B20B-187562797D44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"890FEDE2-474A-4870-9165-CAD39BC6D318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1C7EEDB-5794-419A-8E61-137DB76A4E15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1FC55D7-3857-4614-82FC-5266A3BD8FE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A64FECFD-F6BF-49C1-926C-41868787378C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F7A3B58-4038-41AE-A42E-BE743A14D5A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2019E834-DFF4-4C9A-82D1-E768EA8934EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3D1CC02-7D5F-41CB-A881-A82A13CE9EE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.14:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A677EC3D-A08A-44B8-B7E1-F229F515F407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1b1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"085C333C-E2E7-4ACD-9CC8-C37C67725954\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.