|
Family: Ubuntu Local Security Checks --> Category: infos
USN59-1 : mailman vulnerabilities Vulnerability Scan
Vulnerability Scan Summary mailman vulnerabilities
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote package "mailman" is missing a security patch.
Description :
Florian Weimer discovered a cross-site scripting vulnerability in
mailman's automatically generated error messages. A possible hacker could
craft an URL containing JavaScript (or other content embedded into
HTML) which triggered a mailman error page. When an unsuspecting user
followed this URL, the malicious content was copied unmodified to the
error page and executed in the context of this page.
Juha-Matti Tapio discovered an information disclosure in the private
rosters management. Everybody could check whether a specified email
address was subscribed to a private mailing list by looking at the
error message. This bug was Ubuntu/Debian specific.
Important note:
There is currently another known vulnerability: when an user
subscribes to a mailing list without choosing a password, mailman
automatically generates one. However, there are only about 5 million
different possible passwords which allows brute force attacks.
A different password generation algorithm already exists, but is
currently too immature to be
[...]
Solution :
Upgrade to :
- mailman-2.1.5-1ubuntu2.2 (Ubuntu 4.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|