Vulnerabilities > Great Circle Associates
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1367 | Configuration vulnerability in Great Circle Associates Majordomo 1.94.4/1.94.5 The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command. | 7.8 |
1999-12-28 | CVE-2000-0037 | Unspecified vulnerability in Great Circle Associates Majordomo 1.94.4/1.94.5 Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file. | 4.6 |
1999-12-28 | CVE-2000-0035 | Local resend vulnerability in Majordomo resend command in Majordomo allows local users to gain privileges via shell metacharacters. | 4.6 |
1997-08-24 | CVE-1999-1220 | Unspecified vulnerability in Great Circle Associates Majordomo Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configuration file, via shell metacharacters in the Reply-To header. | 7.5 |
1997-06-18 | CVE-1999-0957 | Unspecified vulnerability in Great Circle Associates Majorcool MajorCool mj_key_cache program allows local users to modify files via a symlink attack. | 2.1 |
1994-06-09 | CVE-1999-0207 | Unspecified vulnerability in Great Circle Associates Majordomo 1.90/1.91 Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command. | 7.5 |