Description

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

Remediation

References

CVE-2006-0052

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-2002-0661)

MySQL CVE-2013-3801 Vulnerability (CVE-2013-3801)

MySQL CVE-2021-35635 Vulnerability (CVE-2021-35635)

WordPress Plugin Real-Time Find and Replace Cross-Site Request Forgery (3.9)

WordPress Plugin Bookshelf Cross-Site Scripting (2.0.4)

Severity

Medium

Classification

CVE-2006-0052

Tags

Missing Update Known Vulnerabilities