漏洞信息详情
GNU Mailman跨站脚本漏洞
- CNNVD编号:CNNVD-200112-134
- 危害等级: 中危
![图片[1]-GNU Mailman跨站脚本漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-11/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2001-0884
- 漏洞类型:
跨站脚本
- 发布时间:
2001-12-21
- 威胁类型:
远程
- 更新时间:
2005-05-02
- 厂 商:
gnu - 漏洞来源:
This vulnerability… -
漏洞简介
Mailman电子邮件档案管理器2.08之前版本存在跨站脚本漏洞。攻击者借助一个由其他网络用户访问的恶意链接获取敏感信息或者认证凭证。
漏洞公告
The vendor has addressed this issue in Mailman 2.0.8.
GNU Mailman 1.1
-
Debian 2.2 alpha mailman_1.1-10_alpha.deb
http://security.debian.org/dists/stable/updates/main/binary-alpha/mail
man_1.1-10_alpha.deb -
Debian 2.2 arm mailman_1.1-10_arm.deb
http://security.debian.org/dists/stable/updates/main/binary-arm/mailma
n_1.1-10_arm.deb -
Debian 2.2 i386 mailman_1.1-10_i386.deb
http://security.debian.org/dists/stable/updates/main/binary-i386/mailm
an_1.1-10_i386.deb -
Debian 2.2 m68k mailman_1.1-10_m68k.deb
http://security.debian.org/dists/stable/updates/main/binary-m68k/mailm
an_1.1-10_m68k.deb -
Debian 2.2 ppc mailman_1.1-10_powerpc.deb
http://security.debian.org/dists/stable/updates/main/binary-powerpc/ma
ilman_1.1-10_powerpc.deb -
Debian 2.2 sparc mailman_1.1-10_sparc.deb
http://security.debian.org/dists/stable/updates/main/binary-sparc/mail
man_1.1-10_sparc.deb
GNU Mailman 2.0
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
GNU Mailman 2.0 .1
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
GNU Mailman 2.0 beta3
-
Conectiva 5.0 i386 mailman-2.0.8-2U50_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.0/i386/mailman-2.0.8-2U50_1cl.i3
86.rpm -
Conectiva 5.1 i386 mailman-2.0.8-2U51_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/5.1/i386/mailman-2.0.8-2U51_1cl.i3
86.rpm
GNU Mailman 2.0 .3
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
GNU Mailman 2.0 .7
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
GNU Mailman 2.0 .2
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
GNU Mailman 2.0 beta5
-
Conectiva 6.0 i386 mailman-2.0.8-2U60_1cl.i386.rpm
ftp://atualizacoes.conectiva.com.br/6.0/RPMS/mailman-2.0.8-2U60_1cl.i3
86.rpm -
RedHat mailman-2.0.8-0.6.2.i386.rpm
ftp://updates.redhat.com/other_prod/secureweb/3.2/i386/mailman-2.0.8-0
.6.2.i386.rpm
GNU Mailman 2.0 .6
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz -
Red Hat 7.2 i386 mailman-2.0.8-1.i386.rpm
ftp://updates.redhat.com/7.2/en/os/i386/mailman-2.0.8-1.i386.rpm
GNU Mailman 2.0 .5
-
GNU mailman-2.0.8.tgz
http://prdownloads.sourceforge.net/mailman/mailman-2.0.8.tgz
参考网址
来源: BUGTRAQ
名称: 20011128 Cgisecurity.com Advisory #7: Mailman Email Archive Cross Site Scripting
链接:http://www.securityfocus.com/archive/1/242839
来源: CONECTIVA
名称: CLA-2001:445
链接:http://www.securityfocus.com/advisories/3721
来源: XF
名称: mailman-java-css(7617)
链接:http://xforce.iss.net/static/7617.php
来源: BID
名称: 3602
链接:http://www.securityfocus.com/bid/3602
来源: REDHAT
名称: RHSA-2001:170
链接:http://www.redhat.com/support/errata/RHSA-2001-170.html
来源: REDHAT
名称: RHSA-2001:169
链接:http://www.redhat.com/support/errata/RHSA-2001-169.html
来源: REDHAT
名称: RHSA-2001:168
链接:http://www.redhat.com/support/errata/RHSA-2001-168.html
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
