CVE-2006-0052

Currently unrated

Key Information:

Vendor: Gnu
Status: Mailman
Vendor: CVE Published:; 31 March 2006

Summary

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.

References

http://secunia.com/advisories/19522

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/20782

third-party-advisoryx_refsource_SECUNIA

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

12% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 31, 2006
Vulnerability Reserved
Dec 28, 2005