Summary
The remote host seems to be running sympa, an open source mailing list software.
This version of Sympa has an authentication flaw within the web interface.
An attacker, exploiting this flaw, would be able to bypass security mechanisms resulting in the ability to perform listmaster functions remotely.
Solution
Update to version 4.1.2 or newer
References
Updated on 2015-03-25
Severity
Classification
-
CVSS Base Score: 4.0
AV:N/AC:H/Au:N/C:P/I:P/A:N
Related Vulnerabilities
- Apache Web Server ETag Header Information Disclosure Weakness
- 1024 CMS 1.1.0 Beta 'force_download.php' Local File Include Vulnerability
- 123 Flash Chat Multiple Security Vulnerabilities
- AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities
- Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities