Lucene search

[email protected]CVE-2002-0389

HistoryJun 18, 2002 - 4:00 a.m.

CVE-2002-0389

2002-06-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2002-0389

pipermail

mailman

information security

private messages

local users.

5.8 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives.

CPENameOperatorVersion
gnu:mailmangnu mailmaneq*

CPE	Name	Operator	Version
gnu:mailman	gnu mailman	eq	*

References

marc.info/?l=bugtraq&m=101902003314968&w=2

rhn.redhat.com/errata/RHSA-2015-1417.html

sourceforge.net/tracker/?func=detail&atid=100103&aid=474616&group_id=103

www.iss.net/security_center/static/8874.php

www.securityfocus.com/bid/4538

Social References

5.8 Medium

AI Score

Confidence

Low

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2002-0389

ubuntucve1 nessus6 veracode2 redhat1 openvas3 oraclelinux1 centos1 amazon1