cve-2011-0707
Vulnerability from cvelistv5
Published
2011-02-22 18:00
Modified
2024-08-06 21:58
Severity ?
Summary
Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.
References
secalert@redhat.comhttp://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
secalert@redhat.comhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html
secalert@redhat.comhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html
secalert@redhat.comhttp://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html
secalert@redhat.comhttp://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
secalert@redhat.comhttp://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html
secalert@redhat.comhttp://mail.python.org/pipermail/mailman-announce/2011-February/000157.html
secalert@redhat.comhttp://mail.python.org/pipermail/mailman-announce/2011-February/000158.htmlPatch
secalert@redhat.comhttp://osvdb.org/70936
secalert@redhat.comhttp://secunia.com/advisories/43294Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/43389Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/43425Vendor Advisory
secalert@redhat.comhttp://secunia.com/advisories/43549
secalert@redhat.comhttp://secunia.com/advisories/43580
secalert@redhat.comhttp://secunia.com/advisories/43829
secalert@redhat.comhttp://support.apple.com/kb/HT5002
secalert@redhat.comhttp://www.debian.org/security/2011/dsa-2170
secalert@redhat.comhttp://www.mandriva.com/security/advisories?name=MDVSA-2011:036
secalert@redhat.comhttp://www.redhat.com/support/errata/RHSA-2011-0307.html
secalert@redhat.comhttp://www.redhat.com/support/errata/RHSA-2011-0308.html
secalert@redhat.comhttp://www.securityfocus.com/bid/46464
secalert@redhat.comhttp://www.securitytracker.com/id?1025106
secalert@redhat.comhttp://www.ubuntu.com/usn/USN-1069-1
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0435Vendor Advisory
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0436Vendor Advisory
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0460Vendor Advisory
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0487
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0542
secalert@redhat.comhttp://www.vupen.com/english/advisories/2011/0720
secalert@redhat.comhttps://exchange.xforce.ibmcloud.com/vulnerabilities/65538
af854a3a-2127-422b-91ae-364da2661108http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html
af854a3a-2127-422b-91ae-364da2661108http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html
af854a3a-2127-422b-91ae-364da2661108http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html
af854a3a-2127-422b-91ae-364da2661108http://mail.python.org/pipermail/mailman-announce/2011-February/000158.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/70936
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43294Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43389Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43425Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43549
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43580
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/43829
af854a3a-2127-422b-91ae-364da2661108http://support.apple.com/kb/HT5002
af854a3a-2127-422b-91ae-364da2661108http://www.debian.org/security/2011/dsa-2170
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2011:036
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2011-0307.html
af854a3a-2127-422b-91ae-364da2661108http://www.redhat.com/support/errata/RHSA-2011-0308.html
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/46464
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1025106
af854a3a-2127-422b-91ae-364da2661108http://www.ubuntu.com/usn/USN-1069-1
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0435Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0436Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0460Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0487
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0542
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2011/0720
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/65538
Impacted products
Vendor Product Version
Show details on NVD website


{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:58:26.088Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "ADV-2011-0487",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0487"
          },
          {
            "name": "FEDORA-2011-2102",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html"
          },
          {
            "name": "RHSA-2011:0307",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html"
          },
          {
            "name": "70936",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/70936"
          },
          {
            "name": "43294",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43294"
          },
          {
            "name": "ADV-2011-0720",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0720"
          },
          {
            "name": "SUSE-SR:2011:009",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"
          },
          {
            "name": "ADV-2011-0435",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0435"
          },
          {
            "name": "ADV-2011-0460",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0460"
          },
          {
            "name": "openSUSE-SU-2011:0424",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html"
          },
          {
            "name": "DSA-2170",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2011/dsa-2170"
          },
          {
            "name": "[mailman-announce] 20110213 Mailman Security Patch Announcement",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html"
          },
          {
            "name": "USN-1069-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "http://www.ubuntu.com/usn/USN-1069-1"
          },
          {
            "name": "RHSA-2011:0308",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html"
          },
          {
            "name": "ADV-2011-0436",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0436"
          },
          {
            "name": "APPLE-SA-2011-10-12-3",
            "tags": [
              "vendor-advisory",
              "x_refsource_APPLE",
              "x_transferred"
            ],
            "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
          },
          {
            "name": "MDVSA-2011:036",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036"
          },
          {
            "name": "[mailman-announce] 20110218 Mailman Security Patch Announcement",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html"
          },
          {
            "name": "46464",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/46464"
          },
          {
            "name": "1025106",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1025106"
          },
          {
            "name": "43829",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43829"
          },
          {
            "name": "43425",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43425"
          },
          {
            "name": "ADV-2011-0542",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2011/0542"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.apple.com/kb/HT5002"
          },
          {
            "name": "43389",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43389"
          },
          {
            "name": "mailman-fullname-xss(65538)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538"
          },
          {
            "name": "FEDORA-2011-2125",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html"
          },
          {
            "name": "43580",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43580"
          },
          {
            "name": "FEDORA-2011-2030",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html"
          },
          {
            "name": "43549",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/43549"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2011-02-18T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-16T14:57:01",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "ADV-2011-0487",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0487"
        },
        {
          "name": "FEDORA-2011-2102",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html"
        },
        {
          "name": "RHSA-2011:0307",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0307.html"
        },
        {
          "name": "70936",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/70936"
        },
        {
          "name": "43294",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43294"
        },
        {
          "name": "ADV-2011-0720",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0720"
        },
        {
          "name": "SUSE-SR:2011:009",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html"
        },
        {
          "name": "ADV-2011-0435",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0435"
        },
        {
          "name": "ADV-2011-0460",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0460"
        },
        {
          "name": "openSUSE-SU-2011:0424",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html"
        },
        {
          "name": "DSA-2170",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2011/dsa-2170"
        },
        {
          "name": "[mailman-announce] 20110213 Mailman Security Patch Announcement",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html"
        },
        {
          "name": "USN-1069-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "http://www.ubuntu.com/usn/USN-1069-1"
        },
        {
          "name": "RHSA-2011:0308",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2011-0308.html"
        },
        {
          "name": "ADV-2011-0436",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0436"
        },
        {
          "name": "APPLE-SA-2011-10-12-3",
          "tags": [
            "vendor-advisory",
            "x_refsource_APPLE"
          ],
          "url": "http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html"
        },
        {
          "name": "MDVSA-2011:036",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2011:036"
        },
        {
          "name": "[mailman-announce] 20110218 Mailman Security Patch Announcement",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html"
        },
        {
          "name": "46464",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/46464"
        },
        {
          "name": "1025106",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1025106"
        },
        {
          "name": "43829",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43829"
        },
        {
          "name": "43425",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43425"
        },
        {
          "name": "ADV-2011-0542",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2011/0542"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.apple.com/kb/HT5002"
        },
        {
          "name": "43389",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43389"
        },
        {
          "name": "mailman-fullname-xss(65538)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65538"
        },
        {
          "name": "FEDORA-2011-2125",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html"
        },
        {
          "name": "43580",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43580"
        },
        {
          "name": "FEDORA-2011-2030",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html"
        },
        {
          "name": "43549",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/43549"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2011-0707",
    "datePublished": "2011-02-22T18:00:00",
    "dateReserved": "2011-01-31T00:00:00",
    "dateUpdated": "2024-08-06T21:58:26.088Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2011-0707\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2011-02-22T19:00:02.287\",\"lastModified\":\"2024-11-21T01:24:39.527\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades de ejecuci\u00f3n de comandos en sitios cruzados(XSS) en CGI/confirm.py en GNU Mailman v2.1.14 y anteriores permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del campo (1) nombre completo o (2) nombre de usuario en un mensaje de confirmaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.1.14\",\"matchCriteriaId\":\"D7400C28-5080-48B9-A2B8-30187FA7ADBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46CF8999-445E-4E03-89F1-81669F9F93D8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D965E3E-E08C-40EA-AF66-470F473F0262\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"64179C1D-C96F-431F-AD80-CBCA77CB9E53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC6B30F6-70A8-43C7-BA5C-6DD8A6ED829D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta4:*:*:*:*:*:*\",\"matchCriteriaId\":\"767101D3-ABB0-4D34-AA28-75F78A392F39\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0:beta5:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEB60D06-E9D0-4949-8542-334D180F491D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F884774-D1A1-42A6-A3FE-9B0500725666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C56B981-FD66-46F2-806A-3FFDEC520482\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E3E1994-6CAC-48E9-8438-0D894A76FE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB8742B0-A91D-457D-BF57-06AFC5219BF9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F04EDBE-4B04-4B4C-A2BE-5286AC7C8952\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"615566E3-9EBD-49B3-9727-0883D3F0334B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F59D0CCF-3CD0-4D99-B1F1-38F331422801\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FADF5CE8-D072-4CFE-8A96-BA86187B478B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72278005-5F2A-4459-8813-DF7EC2D1F063\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E39A909-E266-4BA9-87C6-DE26052433E9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABA16FD9-0625-4D3D-9F10-130A28C88DA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE33EFBF-E155-4C3B-93CC-63AA1266A8A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78F2FB70-7EB9-4AA7-9E85-C151C3CC8104\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47F9AC7B-C0EB-4B7F-8997-1491301D0EF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1D6A976-FFEA-4DB6-B002-8036E778C78E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:alpha:*:*:*:*:*:*\",\"matchCriteriaId\":\"33DA97C8-532B-442C-94B4-69D10A81EDA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:beta:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9908375-B974-4238-B839-0E548A92DCDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1:stable:*:*:*:*:*:*\",\"matchCriteriaId\":\"4738B8CB-AE25-4491-8C6F-BBCA47F72D19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8894855-E303-4B55-B3BC-DCBE3A0AB703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.1:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D3AFFFD-1BDC-4511-9DA0-56ACD337F56C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B1500D8-952A-46C6-920C-096760C36A43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"503D7346-4891-40B1-A0CD-0FACC5359431\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"643610C6-99A9-43C9-A8FC-463A244C08DE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45C53260-503F-4934-B1FE-9FACD8E0EE66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.5.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C670F583-6B60-4D80-A75F-CD53FDDF27D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A34CBFC5-CB18-4FE4-9B4D-F3280CBCCD6C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA788EB3-E162-4752-984D-5601A8C6C770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2571330-3239-469E-883D-8994257D0C55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F27323B-6B10-4941-B20B-187562797D44\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"890FEDE2-474A-4870-9165-CAD39BC6D318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1C7EEDB-5794-419A-8E61-137DB76A4E15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1FC55D7-3857-4614-82FC-5266A3BD8FE8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.11:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A64FECFD-F6BF-49C1-926C-41868787378C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F7A3B58-4038-41AE-A42E-BE743A14D5A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2019E834-DFF4-4C9A-82D1-E768EA8934EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.13:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3D1CC02-7D5F-41CB-A881-A82A13CE9EE5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1.14:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A677EC3D-A08A-44B8-B7E1-F229F515F407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:gnu:mailman:2.1b1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"085C333C-E2E7-4ACD-9CC8-C37C67725954\"}]}]}],\"references\":[{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056363.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056387.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056399.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2011-05/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000157.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail.python.org/pipermail/mailman-announce/2011-February/000158.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://osvdb.org/70936\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43294\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43389\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43425\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/43549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43580\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/43829\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://support.apple.com/kb/HT5002\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.debian.org/security/2011/dsa-2170\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.mandriva.com/security/advisories?name=MDVSA-2011:036\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0307.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2011-0308.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/46464\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1025106\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ubuntu.com/usn/USN-1069-1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0435\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0436\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0460\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.vupen.com/english/advisories/2011/0487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0542\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2011/0720\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/65538\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.


Loading…

Loading…

Loading…

Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.