CVE-2012-2352

Name of the Vulnerable Software and Affected Versions Sympa versions prior to 6.1.11

Description The issue concerns the archive management page in Sympa, where a lack of permission checks allows remote attackers to perform unauthorized actions on list archives. This can be achieved through vectors related to the do arc manage, do arc download, or do arc delete functions.

Recommendations For versions prior to 6.1.11, update to version 6.1.11 or later to resolve the issue. As a temporary workaround, consider restricting access to the archive management page to minimize the risk of exploitation.