cve-2011-0707
Vulnerability from cvelistv5
Published
2011-02-22 18:00
Modified
2024-08-06 21:58
Severity ?
EPSS score ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.
References
{ "containers": { "adp": [ { "providerMetadata": { "dateUpdated": "2024-08-06T21:58:26.088Z", "orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE" }, "references": [ { "name": "ADV-2011-0487", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0487" }, { "name": "FEDORA-2011-2102", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html" }, { "name": "RHSA-2011:0307", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html" }, { "name": "70936", "tags": [ "vdb-entry", "x_refsource_OSVDB", "x_transferred" ], "url": "http://osvdb.org/70936" }, { "name": "43294", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43294" }, { "name": "ADV-2011-0720", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0720" }, { "name": "SUSE-SR:2011:009", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html" }, { "name": "ADV-2011-0435", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0435" }, { "name": "ADV-2011-0460", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0460" }, { "name": "openSUSE-SU-2011:0424", "tags": [ "vendor-advisory", "x_refsource_SUSE", "x_transferred" ], "url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html" }, { "name": "DSA-2170", "tags": [ "vendor-advisory", "x_refsource_DEBIAN", "x_transferred" ], "url": "http://www.debian.org/security/2011/dsa-2170" }, { "name": "[mailman-announce] 20110213 Mailman Security Patch Announcement", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html" }, { "name": "USN-1069-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU", "x_transferred" ], "url": "http://www.ubuntu.com/usn/USN-1069-1" }, { "name": "RHSA-2011:0308", "tags": [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred" ], "url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html" }, { "name": "ADV-2011-0436", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0436" }, { "name": "APPLE-SA-2011-10-12-3", "tags": [ "vendor-advisory", "x_refsource_APPLE", "x_transferred" ], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html" }, { "name": "MDVSA-2011:036", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA", "x_transferred" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036" }, { "name": "[mailman-announce] 20110218 Mailman Security Patch Announcement", "tags": [ "mailing-list", "x_refsource_MLIST", "x_transferred" ], "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html" }, { "name": "46464", "tags": [ "vdb-entry", "x_refsource_BID", "x_transferred" ], "url": "http://www.securityfocus.com/bid/46464" }, { "name": "1025106", "tags": [ "vdb-entry", "x_refsource_SECTRACK", "x_transferred" ], "url": "http://www.securitytracker.com/id?1025106" }, { "name": "43829", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43829" }, { "name": "43425", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43425" }, { "name": "ADV-2011-0542", "tags": [ "vdb-entry", "x_refsource_VUPEN", "x_transferred" ], "url": "http://www.vupen.com/english/advisories/2011/0542" }, { "tags": [ "x_refsource_CONFIRM", "x_transferred" ], "url": "http://support.apple.com/kb/HT5002" }, { "name": "43389", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43389" }, { "name": "mailman-fullname-xss(65538)", "tags": [ "vdb-entry", "x_refsource_XF", "x_transferred" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538" }, { "name": "FEDORA-2011-2125", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html" }, { "name": "43580", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43580" }, { "name": "FEDORA-2011-2030", "tags": [ "vendor-advisory", "x_refsource_FEDORA", "x_transferred" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html" }, { "name": "43549", "tags": [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred" ], "url": "http://secunia.com/advisories/43549" } ], "title": "CVE Program Container" } ], "cna": { "affected": [ { "product": "n/a", "vendor": "n/a", "versions": [ { "status": "affected", "version": "n/a" } ] } ], "datePublic": "2011-02-18T00:00:00", "descriptions": [ { "lang": "en", "value": "Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message." } ], "problemTypes": [ { "descriptions": [ { "description": "n/a", "lang": "en", "type": "text" } ] } ], "providerMetadata": { "dateUpdated": "2017-08-16T14:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat" }, "references": [ { "name": "ADV-2011-0487", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0487" }, { "name": "FEDORA-2011-2102", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html" }, { "name": "RHSA-2011:0307", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html" }, { "name": "70936", "tags": [ "vdb-entry", "x_refsource_OSVDB" ], "url": "http://osvdb.org/70936" }, { "name": "43294", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43294" }, { "name": "ADV-2011-0720", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0720" }, { "name": "SUSE-SR:2011:009", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html" }, { "name": "ADV-2011-0435", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0435" }, { "name": "ADV-2011-0460", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0460" }, { "name": "openSUSE-SU-2011:0424", "tags": [ "vendor-advisory", "x_refsource_SUSE" ], "url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html" }, { "name": "DSA-2170", "tags": [ "vendor-advisory", "x_refsource_DEBIAN" ], "url": "http://www.debian.org/security/2011/dsa-2170" }, { "name": "[mailman-announce] 20110213 Mailman Security Patch Announcement", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html" }, { "name": "USN-1069-1", "tags": [ "vendor-advisory", "x_refsource_UBUNTU" ], "url": "http://www.ubuntu.com/usn/USN-1069-1" }, { "name": "RHSA-2011:0308", "tags": [ "vendor-advisory", "x_refsource_REDHAT" ], "url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html" }, { "name": "ADV-2011-0436", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0436" }, { "name": "APPLE-SA-2011-10-12-3", "tags": [ "vendor-advisory", "x_refsource_APPLE" ], "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html" }, { "name": "MDVSA-2011:036", "tags": [ "vendor-advisory", "x_refsource_MANDRIVA" ], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036" }, { "name": "[mailman-announce] 20110218 Mailman Security Patch Announcement", "tags": [ "mailing-list", "x_refsource_MLIST" ], "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html" }, { "name": "46464", "tags": [ "vdb-entry", "x_refsource_BID" ], "url": "http://www.securityfocus.com/bid/46464" }, { "name": "1025106", "tags": [ "vdb-entry", "x_refsource_SECTRACK" ], "url": "http://www.securitytracker.com/id?1025106" }, { "name": "43829", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43829" }, { "name": "43425", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43425" }, { "name": "ADV-2011-0542", "tags": [ "vdb-entry", "x_refsource_VUPEN" ], "url": "http://www.vupen.com/english/advisories/2011/0542" }, { "tags": [ "x_refsource_CONFIRM" ], "url": "http://support.apple.com/kb/HT5002" }, { "name": "43389", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43389" }, { "name": "mailman-fullname-xss(65538)", "tags": [ "vdb-entry", "x_refsource_XF" ], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538" }, { "name": "FEDORA-2011-2125", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html" }, { "name": "43580", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43580" }, { "name": "FEDORA-2011-2030", "tags": [ "vendor-advisory", "x_refsource_FEDORA" ], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html" }, { "name": "43549", "tags": [ "third-party-advisory", "x_refsource_SECUNIA" ], "url": "http://secunia.com/advisories/43549" } ] } }, "cveMetadata": { "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2011-0707", "datePublished": "2011-02-22T18:00:00", "dateReserved": "2011-01-31T00:00:00", "dateUpdated": "2024-08-06T21:58:26.088Z", "state": "PUBLISHED" }, "dataType": "CVE_RECORD", "dataVersion": "5.1", "vulnerability-lookup:meta": { "nvd": "{\"cve\":{\"id\":\"CVE-2011-0707\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2011-02-22T19:00:02.287\",\"lastModified\":\"2024-11-21T01:24:39.527\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados(XSS) en CGI/confirm.py en GNU Mailman v2.1.14 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del campo (1) nombre completo o (2) nombre de usuario en un mensaje de confirmaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.1.14\",\"matchCriteriaId\":\"D7400C28-5080-48B9-A2B8-30187FA7ADBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46CF8999-445E-4E03-89F1-81669F9F93D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D965E3E-E08C-40EA-AF66-470F473F0262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64179C1D-C96F-431F-AD80-CBCA77CB9E53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC6B30F6-70A8-43C7-BA5C-6DD8A6ED829D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"767101D3-ABB0-4D34-AA28-75F78A392F39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEB60D06-E9D0-4949-8542-334D180F491D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F884774-D1A1-42A6-A3FE-9B0500725666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C56B981-FD66-46F2-806A-3FFDEC520482\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E3E1994-6CAC-48E9-8438-0D894A76FE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8742B0-A91D-457D-BF57-06AFC5219BF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F04EDBE-4B04-4B4C-A2BE-5286AC7C8952\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615566E3-9EBD-49B3-9727-0883D3F0334B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F59D0CCF-3CD0-4D99-B1F1-38F331422801\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FADF5CE8-D072-4CFE-8A96-BA86187B478B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72278005-5F2A-4459-8813-DF7EC2D1F063\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E39A909-E266-4BA9-87C6-DE26052433E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABA16FD9-0625-4D3D-9F10-130A28C88DA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE33EFBF-E155-4C3B-93CC-63AA1266A8A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78F2FB70-7EB9-4AA7-9E85-C151C3CC8104\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47F9AC7B-C0EB-4B7F-8997-1491301D0EF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1D6A976-FFEA-4DB6-B002-8036E778C78E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"33DA97C8-532B-442C-94B4-69D10A81EDA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9908375-B974-4238-B839-0E548A92DCDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:stable:*:*:*:*:*:*\",\"matchCriteriaId\":\"4738B8CB-AE25-4491-8C6F-BBCA47F72D19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8894855-E303-4B55-B3BC-DCBE3A0AB703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D3AFFFD-1BDC-4511-9DA0-56ACD337F56C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B1500D8-952A-46C6-920C-096760C36A43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"503D7346-4891-40B1-A0CD-0FACC5359431\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"643610C6-99A9-43C9-A8FC-463A244C08DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45C53260-503F-4934-B1FE-9FACD8E0EE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C670F583-6B60-4D80-A75F-CD53FDDF27D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A34CBFC5-CB18-4FE4-9B4D-F3280CBCCD6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA788EB3-E162-4752-984D-5601A8C6C770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2571330-3239-469E-883D-8994257D0C55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F27323B-6B10-4941-B20B-187562797D44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"890FEDE2-474A-4870-9165-CAD39BC6D318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1C7EEDB-5794-419A-8E61-137DB76A4E15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1FC55D7-3857-4614-82FC-5266A3BD8FE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A64FECFD-F6BF-49C1-926C-41868787378C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F7A3B58-4038-41AE-A42E-BE743A14D5A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2019E834-DFF4-4C9A-82D1-E768EA8934EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3D1CC02-7D5F-41CB-A881-A82A13CE9EE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.14:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A677EC3D-A08A-44B8-B7E1-F229F515F407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1b1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"085C333C-E2E7-4ACD-9CC8-C37C67725954\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}" } }
Loading…
Loading…
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.