CVE
- Id
- 20728
- CVE No.
- CVE-2006-4624
- Status
- Candidate
- Description
- CRLF injection vulnerability in Utils.py in Mailman before 2.1.9rc1 allows remote attackers to spoof messages in the error log and possibly trick the administrator into visiting malicious URLs via CRLF sequences in the URI.
- Phase
- Assigned (20060907)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
Id | CVE Id | CVE No. | Reference | Actions |
---|---|---|---|---|
195817 | 20728 | CVE-2006-4624 | BUGTRAQ:20060913 Mailman 2.1.8 Multiple Security Issues | View |
195818 | 20728 | CVE-2006-4624 | URL:http://www.securityfocus.com/archive/1/archive/1/445992/100/0/threaded | View |
195819 | 20728 | CVE-2006-4624 | MLIST:[Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9 | View |
195820 | 20728 | CVE-2006-4624 | URL:http://mail.python.org/pipermail/mailman-announce/2006-September/000087.html | View |
195821 | 20728 | CVE-2006-4624 | MISC:http://svn.sourceforge.net/viewvc/mailman/trunk/mailman/Mailman/Utils.py?r1=7859&r2=7923 | View |
195822 | 20728 | CVE-2006-4624 | MISC:http://moritz-naumann.com/adv/0013/mailmanmulti/0013.txt | View |
195823 | 20728 | CVE-2006-4624 | CONFIRM:http://sourceforge.net/project/shownotes.php?group_id=103&release_id=444295 | View |
195824 | 20728 | CVE-2006-4624 | DEBIAN:DSA-1188 | View |
195825 | 20728 | CVE-2006-4624 | URL:http://www.debian.org/security/2006/dsa-1188 | View |
195826 | 20728 | CVE-2006-4624 | GENTOO:GLSA-200609-12 | View |
195827 | 20728 | CVE-2006-4624 | URL:http://security.gentoo.org/glsa/glsa-200609-12.xml | View |
195828 | 20728 | CVE-2006-4624 | MANDRIVA:MDKSA-2006:165 | View |
195829 | 20728 | CVE-2006-4624 | URL:http://www.mandriva.com/security/advisories?name=MDKSA-2006:165 | View |
195830 | 20728 | CVE-2006-4624 | REDHAT:RHSA-2007:0779 | View |
195831 | 20728 | CVE-2006-4624 | URL:http://www.redhat.com/support/errata/RHSA-2007-0779.html | View |
195832 | 20728 | CVE-2006-4624 | SUSE:SUSE-SR:2006:025 | View |
195833 | 20728 | CVE-2006-4624 | URL:http://www.novell.com/linux/security/advisories/2006_25_sr.html | View |
195834 | 20728 | CVE-2006-4624 | BID:19831 | View |
195835 | 20728 | CVE-2006-4624 | URL:http://www.securityfocus.com/bid/19831 | View |
195836 | 20728 | CVE-2006-4624 | BID:20021 | View |
195837 | 20728 | CVE-2006-4624 | URL:http://www.securityfocus.com/bid/20021 | View |
195838 | 20728 | CVE-2006-4624 | OVAL:oval:org.mitre.oval:def:9756 | View |
195839 | 20728 | CVE-2006-4624 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9756 | View |
195840 | 20728 | CVE-2006-4624 | VUPEN:ADV-2006-3446 | View |
195841 | 20728 | CVE-2006-4624 | URL:http://www.vupen.com/english/advisories/2006/3446 | View |
195842 | 20728 | CVE-2006-4624 | SECUNIA:21732 | View |
195843 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/21732 | View |
195844 | 20728 | CVE-2006-4624 | SECUNIA:22011 | View |
195845 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/22011 | View |
195846 | 20728 | CVE-2006-4624 | SECUNIA:22020 | View |
195847 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/22020 | View |
195848 | 20728 | CVE-2006-4624 | SECUNIA:22227 | View |
195849 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/22227 | View |
195850 | 20728 | CVE-2006-4624 | SECUNIA:22639 | View |
195851 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/22639 | View |
195852 | 20728 | CVE-2006-4624 | SECUNIA:27669 | View |
195853 | 20728 | CVE-2006-4624 | URL:http://secunia.com/advisories/27669 | View |
195854 | 20728 | CVE-2006-4624 | XF:mailman-admin-spoofing(28734) | View |
Related JVN
Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
---|---|---|---|---|---|---|---|---|---|
58943 | JVNDB-2006-001209 | alwil avast! Anti-virus Engine におけるヒープベースのバッファオーバーフローの脆弱性 | alwil avast! Anti-virus Engine には、ヒープベースのバッファオーバーフローの脆弱性が存在します。 | CVE-2006-4626 | 20728 | 7.5 | http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001209.html | View |