11 matches found
SUSE CVE-2005-3573
Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service application crash...
Debian Security Advisory DSA 955-1 (clamav)
The remote host is missing an update to clamav announced via advisory DSA 955-1. Two denial of service bugs were found in the mailman list server. In one, attachment filenames containing UTF8 strings were not properly parsed, which could cause the server to crash. In another, a message containing...
CentOS 3 / 4 : mailman (CESA-2006:0204)
An updated mailman package that fixes two security issues is now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mailman is software to help manage email discussion lists. A flaw in handling of UT...
mailman security update
CentOS Errata and Security Advisory CESA-2006:0204 An updated mailman package that fixes two security issues is now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mailman is software to help mana...
Moderate: Red Hat Security Advisory: mailman security update
An updated mailman package that fixes two security issues is now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Mailman is software to help manage email discussion lists. A flaw in handling of UT...
Ubuntu 4.10 / 5.04 / 5.10 : mailman vulnerabilities (USN-242-1)
Aliet Santiesteban Sifontes discovered a remote Denial of Service vulnerability in the attachment handler. An email with an attachment whose filename contained invalid UTF-8 characters caused mailman to crash. CVE-2005-3573 Mailman did not sufficiently verify the validity of email dates. Very lar...
USN-242-1: mailman vulnerabilities
Aliet Santiesteban Sifontes discovered a remote Denial of Service vulnerability in the attachment handler. An email with an attachment whose filename contained invalid UTF-8 characters caused mailman to crash. CVE-2005-3573 Mailman did not sufficiently verify the validity of email dates. Very lar...
[Full-disclosure] [USN-242-1] mailman vulnerabilities
=========================================================== Ubuntu Security Notice USN-242-1 January 16, 2006 mailman vulnerabilities CVE-2005-3573, CVE-2005-4153 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 4.10 Warty...
Mandrake Linux Security Advisory : mailman (MDKSA-2005:222)
Scrubber.py in Mailman 2.1.4 - 2.1.6 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service. CVE-2005-3573 In addition, these versions of mailman have an issue where the server will fail with an Overflow on...
CVE-2005-3573
Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service application crash...
CVE-2005-3573
CVE-2005-3573 affects Mailman 2.1.4–2.1.6 with two DoS vectors: (1) UTF-8 handling in attachment filenames can crash the server, and (2) malformed date handling can crash the Mailman service. Connected advisories (RHSA-2006:0204, Debian DSA-955-1, CentOS/CESA-2006:0204) document these issues and ...