|
Family: Ubuntu Local Security Checks --> Category: infos
USN242-1 : mailman vulnerabilities Vulnerability Scan
Vulnerability Scan Summary mailman vulnerabilities
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote package "mailman" is missing a security patch.
Description :
Aliet Santiesteban Sifontes discovered a remote Denial of Service
vulnerability in the attachment handler. An email with an attachment
whose filename contained invalid UTF-8 characters caused mailman to
crash. (CVE-2005-3573)
Mailman did not sufficiently verify the validity of email dates. Very
large numbers in dates caused mailman to crash. (CVE-2005-4153)
Solution :
Upgrade to :
- mailman-2.1.5-8ubuntu2.1 (Ubuntu 5.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|