Mailman Multiple Unspecified XSS

2006-09-02T07:34:19
ID OSVDB:28438
Type osvdb
Reporter OSVDB
Modified 2006-09-02T07:34:19

Description

Solution Description

Upgrade to version 2.1.9rc1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.gnu.org/software/mailman/ Vendor Specific News/Changelog Entry: https://sourceforge.net/project/shownotes.php?group_id=103&release_id=444295 Vendor Specific Advisory URL Vendor Specific Advisory URL Vendor Specific Advisory URL Secunia Advisory ID:21879 Secunia Advisory ID:22011 Secunia Advisory ID:21792 Secunia Advisory ID:22020 Secunia Advisory ID:21732 Secunia Advisory ID:22227 Secunia Advisory ID:22639 Related OSVDB ID: 28437 Related OSVDB ID: 28436 RedHat RHSA: RHSA-2006:0600 Other Advisory URL: http://www.us.debian.org/security/2006/dsa-1188 Other Advisory URL: http://moritz-naumann.com/adv/0013/mailmanmulti/0013.txt Other Advisory URL: http://www.ubuntu.com/usn/usn-345-1 Mail List Post: http://mail.python.org/pipermail/mailman-announce/2006-September/000086.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-09/0220.html CVE-2006-3636