Описание
The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote attackers to determine the list membership for a given e-mail address.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 2.1.5-9ubuntu4.1 |
| devel | released | 2.1.8-2ubuntu2 |
| edgy | released | 2.1.8-2ubuntu2 |
| feisty | released | 2.1.8-2ubuntu2 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
5 Medium
CVSS2
Связанные уязвимости
The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote attackers to determine the list membership for a given e-mail address.
The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 ...
The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote attackers to determine the list membership for a given e-mail address.
EPSS
5 Medium
CVSS2