Vulnerabilities > CVE-2001-0884 - Cross-Site Scripting vulnerability in GNU Mailman

047910
CVSS 5.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
HIGH
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
high complexity
gnu
NVD
Published: 2001-12-21
Updated: 2017-10-10

Summary

Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.

Vulnerable Configurations

Part Description Count
Application
Gnu
5

Redhat

advisories
  • rhsa
    idRHSA-2001:168
  • rhsa
    idRHSA-2001:169
  • rhsa
    idRHSA-2001:170

References