Computer Security

CVE-2008-0564
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CVECVE-2008-0564
StatusCandidate
DescriptionMultiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) editing templates and (2) the list's "info attribute" in the web administrator interface, a different vulnerability than CVE-2006-3636.
PhaseAssigned (04.02.2008)
SecurityVulns:Mailman crossite scripting
NVD:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-0564
ReferencesBID : 27630
 CONFIRM : http://sourceforge.net/project/shownotes.php?relea...
 FRSIRT : ADV-2008-0422
 MLIST : [Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released)
 SECUNIA : 28794
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
 


Рейтинг@Mail.ru