PT-2002-1446 · Gnu+2 · Mailman+2

Published

2002-06-18

Updated

2016-12-28

CVE-2002-0389

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Mailman (affected versions not specified)

Description The issue concerns the storage of private mail messages by Pipermail in Mailman. These messages are stored with predictable filenames in a world-executable directory. This setup allows local users to read private mailing list archives.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CESA-2015_1417

CVE-2002-0389

RHSA-2015:1417

RHSA-2015_1417

Affected Products

Centos

Mailman

Red Hat

PT-2002-1446 · Gnu+2 · Mailman+2

CVE-2002-0389

Related Identifiers

Affected Products

References · 18