Majordomo Vulnerable to Directory Traversal

2011-02-04T00:00:00
ID CISA:D99EDA2FA04F9AE517074B3BE9094A72
Type cisa
Reporter CISA
Modified 2012-10-23T00:00:00

Description

US-CERT is aware of a vulnerability affecting Majordomo 2. Exploitation of this vulnerability may allow an attacker to obtain sensitive information that could be used to leverage additional attacks. Reports indicate that this vulnerability affects builds 20110121 and prior.

US-CERT encourages users and administrators to upgrade to Majordomo 2 build 20110125 and later. Additional information regarding this vulnerability can be found in this Sitewatch Advisory.

This product is provided subject to this Notification and this Privacy & Use policy.

Please share your thoughts.

We recently updated our anonymous product survey; we'd welcome your feedback.