Description

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

Remediation

References

CVE-2006-0052

Related Vulnerabilities

OpenSSL Numeric Errors Vulnerability (CVE-2009-0789)

Oracle Database Server Other Vulnerability (CVE-2005-1197)

MySQL CVE-2018-3073 Vulnerability (CVE-2018-3073)

WordPress Plugin Car Rental by BestWebSoft Cross-Site Scripting (1.0.4)

WordPress Plugin Banner Garden Multiple Cross-Site Scripting Vulnerabilities (0.1.3)

Severity

Medium

Classification

CVE-2006-0052

Tags

Missing Update Known Vulnerabilities