Summary
Mailman is prone to an unspecified privilege-escalation scripting vulnerability.
Few technical details are available at this time.
Local attackers may exploit this issue to obtain elevated privileges and compromise a computer.
This issue is known to affect Mailman 2.0.2 and 2.0.4 other versions
may be vulnerable as well.
Solution
Updates are available. Please see the references for more information.
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities
- aflog Cookie-Based Authentication Bypass Vulnerability
- 3Com OfficeConnect VPN Firewall Default Password Security Bypass Vulnerability
- Apache Solr XML External Entity(XXE) Vulnerability-02 Jan-14
- Andy's PHP Knowledgebase 's' Parameter SQL Injection Vulnerability