Description

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

Remediation

References

CVE-2006-0052

Related Vulnerabilities

MySQL CVE-2017-3459 Vulnerability (CVE-2017-3459)

WordPress Plugin Invoicing with InvoiceXpress for WooCommerce-Free Cross-Site Scripting (3.0.2)

WordPress Plugin WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Security Bypass (7.6.4)

Oracle Database Server CVE-2006-0262 Vulnerability (CVE-2006-0262)

WordPress Plugin AccessPress iFeeds includes Backdoor [Only if downloaded via the vendor website] (4.0.3)

Severity

Medium

Classification

CVE-2006-0052

Tags

Missing Update Known Vulnerabilities