Vulnerability-Lookup

FKIE_CVE-2006-0052

Vulnerability from fkie_nvd - Published: 2006-03-31 11:06 - Updated: 2025-04-03 01:03

Severity ?

Summary

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

References

URL	Tags
security@debian.org	ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc
security@debian.org	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892	Patch
security@debian.org	http://secunia.com/advisories/19522
security@debian.org	http://secunia.com/advisories/19545
security@debian.org	http://secunia.com/advisories/19571
security@debian.org	http://secunia.com/advisories/20624
security@debian.org	http://secunia.com/advisories/20782
security@debian.org	http://securitytracker.com/id?1015851
security@debian.org	http://www.debian.org/security/2006/dsa-1027
security@debian.org	http://www.mandriva.com/security/advisories?name=MDKSA-2006:061
security@debian.org	http://www.novell.com/linux/security/advisories/2006_08_sr.html
security@debian.org	http://www.osvdb.org/24367
security@debian.org	http://www.redhat.com/support/errata/RHSA-2006-0486.html
security@debian.org	http://www.securityfocus.com/bid/17311	Patch
security@debian.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475
security@debian.org	https://usn.ubuntu.com/267-1/
af854a3a-2127-422b-91ae-364da2661108	ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc
af854a3a-2127-422b-91ae-364da2661108	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892	Patch
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19522
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19545
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19571
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/20624
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/20782
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015851
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2006/dsa-1027
af854a3a-2127-422b-91ae-364da2661108	http://www.mandriva.com/security/advisories?name=MDKSA-2006:061
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2006_08_sr.html
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/24367
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2006-0486.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/17311	Patch
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475
af854a3a-2127-422b-91ae-364da2661108	https://usn.ubuntu.com/267-1/

Impacted products

Vendor	Product	Version
gnu	mailman	1.0
gnu	mailman	1.1
gnu	mailman	2.0
gnu	mailman	2.0
gnu	mailman	2.0
gnu	mailman	2.0
gnu	mailman	2.0.1
gnu	mailman	2.0.2
gnu	mailman	2.0.3
gnu	mailman	2.0.4
gnu	mailman	2.0.5
gnu	mailman	2.0.6
gnu	mailman	2.0.7
gnu	mailman	2.0.8
gnu	mailman	2.0.9
gnu	mailman	2.0.10
gnu	mailman	2.0.11
gnu	mailman	2.0.12
gnu	mailman	2.0.13
gnu	mailman	2.0.14
gnu	mailman	2.1
gnu	mailman	2.1.1
gnu	mailman	2.1.2
gnu	mailman	2.1.3
gnu	mailman	2.1.4
gnu	mailman	2.1.5
gnu	mailman	2.1b1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gnu:mailman:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "46CF8999-445E-4E03-89F1-81669F9F93D8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D965E3E-E08C-40EA-AF66-470F473F0262",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "64179C1D-C96F-431F-AD80-CBCA77CB9E53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0:beta3:*:*:*:*:*:*",
              "matchCriteriaId": "EC6B30F6-70A8-43C7-BA5C-6DD8A6ED829D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0:beta4:*:*:*:*:*:*",
              "matchCriteriaId": "767101D3-ABB0-4D34-AA28-75F78A392F39",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0:beta5:*:*:*:*:*:*",
              "matchCriteriaId": "BEB60D06-E9D0-4949-8542-334D180F491D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F884774-D1A1-42A6-A3FE-9B0500725666",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "2C56B981-FD66-46F2-806A-3FFDEC520482",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E3E1994-6CAC-48E9-8438-0D894A76FE66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB8742B0-A91D-457D-BF57-06AFC5219BF9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F04EDBE-4B04-4B4C-A2BE-5286AC7C8952",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "615566E3-9EBD-49B3-9727-0883D3F0334B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "F59D0CCF-3CD0-4D99-B1F1-38F331422801",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "FADF5CE8-D072-4CFE-8A96-BA86187B478B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "72278005-5F2A-4459-8813-DF7EC2D1F063",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "4E39A909-E266-4BA9-87C6-DE26052433E9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABA16FD9-0625-4D3D-9F10-130A28C88DA2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE33EFBF-E155-4C3B-93CC-63AA1266A8A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "78F2FB70-7EB9-4AA7-9E85-C151C3CC8104",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "47F9AC7B-C0EB-4B7F-8997-1491301D0EF0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1D6A976-FFEA-4DB6-B002-8036E778C78E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8894855-E303-4B55-B3BC-DCBE3A0AB703",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B1500D8-952A-46C6-920C-096760C36A43",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "503D7346-4891-40B1-A0CD-0FACC5359431",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "643610C6-99A9-43C9-A8FC-463A244C08DE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "45C53260-503F-4934-B1FE-9FACD8E0EE66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:gnu:mailman:2.1b1:*:*:*:*:*:*:*",
              "matchCriteriaId": "085C333C-E2E7-4ACD-9CC8-C37C67725954",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python\u0027s library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary."
    }
  ],
  "id": "CVE-2006-0052",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-03-31T11:06:00.000",
  "references": [
    {
      "source": "security@debian.org",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc"
    },
    {
      "source": "security@debian.org",
      "tags": [
        "Patch"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892"
    },
    {
      "source": "security@debian.org",
      "url": "http://secunia.com/advisories/19522"
    },
    {
      "source": "security@debian.org",
      "url": "http://secunia.com/advisories/19545"
    },
    {
      "source": "security@debian.org",
      "url": "http://secunia.com/advisories/19571"
    },
    {
      "source": "security@debian.org",
      "url": "http://secunia.com/advisories/20624"
    },
    {
      "source": "security@debian.org",
      "url": "http://secunia.com/advisories/20782"
    },
    {
      "source": "security@debian.org",
      "url": "http://securitytracker.com/id?1015851"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.debian.org/security/2006/dsa-1027"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:061"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.osvdb.org/24367"
    },
    {
      "source": "security@debian.org",
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0486.html"
    },
    {
      "source": "security@debian.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/17311"
    },
    {
      "source": "security@debian.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475"
    },
    {
      "source": "security@debian.org",
      "url": "https://usn.ubuntu.com/267-1/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/19522"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/19545"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/19571"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/20624"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/20782"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1015851"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2006/dsa-1027"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:061"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/24367"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/support/errata/RHSA-2006-0486.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/17311"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://usn.ubuntu.com/267-1/"
    }
  ],
  "sourceIdentifier": "security@debian.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2006-0052 (GCVE-0-2006-0052)

Vulnerability from cvelistv5 – Published: 2006-03-31 11:00 – Updated: 2024-08-07 16:18

Summary

Severity ?

No CVSS data available.

CWE

Assigner

debian

References

URL

Tags

	http://secunia.com/advisories/19522	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/20782	third-party-advisoryx_refsource_SECUNIA
	https://oval.cisecurity.org/repository/search/def…	vdb-entrysignaturex_refsource_OVAL
	http://www.securityfocus.com/bid/17311	vdb-entryx_refsource_BID
	http://secunia.com/advisories/20624	third-party-advisoryx_refsource_SECUNIA
	ftp://patches.sgi.com/support/free/security/advis…	vendor-advisoryx_refsource_SGI
	http://www.debian.org/security/2006/dsa-1027	vendor-advisoryx_refsource_DEBIAN
	http://www.redhat.com/support/errata/RHSA-2006-04…	vendor-advisoryx_refsource_REDHAT
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE
	http://www.mandriva.com/security/advisories?name=…	vendor-advisoryx_refsource_MANDRIVA
	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892	x_refsource_CONFIRM
	http://securitytracker.com/id?1015851	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/19545	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/19571	third-party-advisoryx_refsource_SECUNIA
	https://usn.ubuntu.com/267-1/	vendor-advisoryx_refsource_UBUNTU
	http://www.osvdb.org/24367	vdb-entryx_refsource_OSVDB

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T16:18:20.931Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "19522",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19522"
          },
          {
            "name": "20782",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/20782"
          },
          {
            "name": "oval:org.mitre.oval:def:9475",
            "tags": [
              "vdb-entry",
              "signature",
              "x_refsource_OVAL",
              "x_transferred"
            ],
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475"
          },
          {
            "name": "17311",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/17311"
          },
          {
            "name": "20624",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/20624"
          },
          {
            "name": "20060602-01-U",
            "tags": [
              "vendor-advisory",
              "x_refsource_SGI",
              "x_transferred"
            ],
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc"
          },
          {
            "name": "DSA-1027",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2006/dsa-1027"
          },
          {
            "name": "RHSA-2006:0486",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/support/errata/RHSA-2006-0486.html"
          },
          {
            "name": "SUSE-SR:2006:008",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html"
          },
          {
            "name": "MDKSA-2006:061",
            "tags": [
              "vendor-advisory",
              "x_refsource_MANDRIVA",
              "x_transferred"
            ],
            "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:061"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892"
          },
          {
            "name": "1015851",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015851"
          },
          {
            "name": "19545",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19545"
          },
          {
            "name": "19571",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19571"
          },
          {
            "name": "USN-267-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_UBUNTU",
              "x_transferred"
            ],
            "url": "https://usn.ubuntu.com/267-1/"
          },
          {
            "name": "24367",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/24367"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-03-29T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python\u0027s library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-03T20:57:01",
        "orgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
        "shortName": "debian"
      },
      "references": [
        {
          "name": "19522",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19522"
        },
        {
          "name": "20782",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/20782"
        },
        {
          "name": "oval:org.mitre.oval:def:9475",
          "tags": [
            "vdb-entry",
            "signature",
            "x_refsource_OVAL"
          ],
          "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475"
        },
        {
          "name": "17311",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/17311"
        },
        {
          "name": "20624",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/20624"
        },
        {
          "name": "20060602-01-U",
          "tags": [
            "vendor-advisory",
            "x_refsource_SGI"
          ],
          "url": "ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc"
        },
        {
          "name": "DSA-1027",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2006/dsa-1027"
        },
        {
          "name": "RHSA-2006:0486",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://www.redhat.com/support/errata/RHSA-2006-0486.html"
        },
        {
          "name": "SUSE-SR:2006:008",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html"
        },
        {
          "name": "MDKSA-2006:061",
          "tags": [
            "vendor-advisory",
            "x_refsource_MANDRIVA"
          ],
          "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:061"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892"
        },
        {
          "name": "1015851",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015851"
        },
        {
          "name": "19545",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19545"
        },
        {
          "name": "19571",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19571"
        },
        {
          "name": "USN-267-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_UBUNTU"
          ],
          "url": "https://usn.ubuntu.com/267-1/"
        },
        {
          "name": "24367",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/24367"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@debian.org",
          "ID": "CVE-2006-0052",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python\u0027s library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "19522",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19522"
            },
            {
              "name": "20782",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/20782"
            },
            {
              "name": "oval:org.mitre.oval:def:9475",
              "refsource": "OVAL",
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9475"
            },
            {
              "name": "17311",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/17311"
            },
            {
              "name": "20624",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/20624"
            },
            {
              "name": "20060602-01-U",
              "refsource": "SGI",
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc"
            },
            {
              "name": "DSA-1027",
              "refsource": "DEBIAN",
              "url": "http://www.debian.org/security/2006/dsa-1027"
            },
            {
              "name": "RHSA-2006:0486",
              "refsource": "REDHAT",
              "url": "http://www.redhat.com/support/errata/RHSA-2006-0486.html"
            },
            {
              "name": "SUSE-SR:2006:008",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2006_08_sr.html"
            },
            {
              "name": "MDKSA-2006:061",
              "refsource": "MANDRIVA",
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:061"
            },
            {
              "name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892",
              "refsource": "CONFIRM",
              "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=358892"
            },
            {
              "name": "1015851",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015851"
            },
            {
              "name": "19545",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19545"
            },
            {
              "name": "19571",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19571"
            },
            {
              "name": "USN-267-1",
              "refsource": "UBUNTU",
              "url": "https://usn.ubuntu.com/267-1/"
            },
            {
              "name": "24367",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/24367"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "79363d38-fa19-49d1-9214-5f28da3f3ac5",
    "assignerShortName": "debian",
    "cveId": "CVE-2006-0052",
    "datePublished": "2006-03-31T11:00:00",
    "dateReserved": "2005-12-28T00:00:00",
    "dateUpdated": "2024-08-07T16:18:20.931Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

FKIE_CVE-2006-0052

CVE-2006-0052 (GCVE-0-2006-0052)

Tags

Sightings

Nomenclature