9 matches found
Gentoo Security Advisory GLSA 200406-04 (mailman)
The remote host is missing updates announced in advisory GLSA 200406-04. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
FreeBSD Ports: mailman, ja-mailman
The remote host is missing an update to the system as announced in the referenced advisory. VID ad9d2518-3471-4737-b60b-9a1f51023b28 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: mailman, ja-mailman
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD : mailman -- password disclosure (ad9d2518-3471-4737-b60b-9a1f51023b28)
Barry Warsaw reports : Today I am releasing Mailman 2.1.5, a bug fix release ... This version also contains a fix for an exploit that could allow 3rd parties to retrieve member passwords. It is thus highly recommended that all existing sites upgrade to the latest version. %NASLMINLEVEL 70300 C...
Mandrake Linux Security Advisory : mailman (MDKSA-2004:051)
Mailman versions = 2.1 have an issue where 3rd parties can retrieve member passwords from the server. The updated packages have a patch backported from 2.1.5 to correct the issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...
Fedora Core 2 : mailman-2.1.5-7 (2004-168)
Fixes security issue CVE-2004-0412 noted in bug https://bugzilla.redhat.com/bugzilla/showbug.cgi?id=123559 Mailman subscriber passwords could be retrieved by a remote attacker. Security hole is fixed in mailman-2.1.5 Important Installation Note: Some users have reported problems with bad queue...
Fedora Core 1 : mailman-2.1.5-6 (2004-167)
Fixes security issue CVE-2004-0412 noted in bug https://bugzilla.redhat.com/bugzilla/showbug.cgi?id=123559 Mailman subscriber passwords could be retrieved by a remote attacker. Security hole is fixed in mailman-2.1.5 Important Installation Note: Some users have reported problems with bad queue...
CVE-2004-0412
Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server...
CVE-2004-0412
Mailman prior to version 2.1.5 is affected by CVE-2004-0412. A crafted email request to the Mailman server can allow a remote attacker to obtain user passwords, per the description in multiple sources (Mailman password disclosure). The vulnerability stems from how password data could be disclosed...