Description

Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives.

Remediation

References

CVE-2002-0389

Related Vulnerabilities

Ruby Improper Authentication Vulnerability (CVE-2017-10784)

MySQL CVE-2019-2628 Vulnerability (CVE-2019-2628)

Chamilo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-34961)

WordPress Plugin YARPP-Yet Another Related Posts Cross-Site Scripting (5.30.2)

Oracle JRE CVE-2014-0455 Vulnerability (CVE-2014-0455)

Severity

Low

Classification

CVE-2002-0389

Tags

Missing Update Known Vulnerabilities