Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2002-0855HistorySep 05, 2002 - 4:00 a.m.
CVE-2002-0855
2002-09-0504:00:00
Debian Security Bug Tracker
security-tracker.debian.org
4
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.083 Low
EPSS
Percentile
94.3%
Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber’s list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 10 | all | mailman | < 2.0.12-1 | mailman_2.0.12-1_all.deb |
Related
nessus
nessus
RHEL 2.1 : mailman (RHSA-2002:181)
2004-07-06 00:00:00
Debian DSA-147-1 : mailman - XSS
2004-09-29 00:00:00
cve
cve
CVE-2002-0855
2002-09-05 04:00:00
osv
osv
mailman - cross-site scripting
2002-08-08 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.083 Low
EPSS
Percentile
94.3%
Related for DEBIANCVE:CVE-2002-0855