Описание
The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
Ссылки
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1Версия до 2.0 (включая)
Одно из
cpe:2.3:a:great_circle_associates:majordomo:*:*:*:*:*:*:*:*
cpe:2.3:a:great_circle_associates:majordomo:1.94.4:*:*:*:*:*:*:*
cpe:2.3:a:great_circle_associates:majordomo:1.94.5:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS2
Дефекты
CWE-16
Связанные уязвимости
github
почти 4 года назад
The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
EPSS
Процентиль: 56%
0.00343
Низкий
7.8 High
CVSS2
Дефекты
CWE-16