Description

Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives.

Remediation

References

CVE-2002-0389

Related Vulnerabilities

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3069)

Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2021-41079)

Oracle JRE CVE-2020-2756 Vulnerability (CVE-2020-2756)

WordPress Plugin Templatic Tevolution Arbitrary File Upload (2.3.6)

WordPress Plugin 10Web Map Builder for Google Maps Cross-Site Scripting (1.0.69)

Severity

Low

Classification

CVE-2002-0389

Tags

Missing Update Known Vulnerabilities