PT-2005-4359 · Gnu+1 · Mailman+1

Aliet Santiesteban Sifontes

Published

2005-11-16

Updated

2017-10-11

CVE-2005-3573

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Mailman version 2.1.5-8

Description The issue is related to the handling of UTF8 character encodings in filenames of e-mail attachments by the Scrubber.py component. This can be exploited by remote attackers to cause a denial of service, resulting in an application crash.

Recommendations For Mailman version 2.1.5-8, consider updating to a newer version that properly handles UTF8 character encodings in filenames of e-mail attachments to prevent the denial of service.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3573

DSA-955-1

RHSA-2006:0204

RHSA-2006_0204

Affected Products

Mailman

Red Hat

PT-2005-4359 · Gnu+1 · Mailman+1

CVE-2005-3573

Related Identifiers

Affected Products

References · 29