Return to CVE list

CVE-2006-4624

2.6

Low

CVE-2006-4624

7 Sep 2006

cve@mitre.org

Deferred

View on MITRE Find on GitHub

Description

CRLF injection vulnerability in Utils.py in Mailman before 2.1.9rc1 allows remote attackers to spoof messages in the error log and possibly trick the administrator into visiting malicious URLs via CRLF sequences in the URI.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cve@mitre.org

http://mail.python.org/pipermail/mailman-announce/2006-September/000087.html

cve@mitre.org

http://moritz-naumann.com/adv/0013/mailmanmulti/0013.txt

cve@mitre.org

http://secunia.com/advisories/21732

cve@mitre.org

http://secunia.com/advisories/22011

cve@mitre.org

http://secunia.com/advisories/22020

cve@mitre.org

http://secunia.com/advisories/22227

cve@mitre.org

http://secunia.com/advisories/22639

cve@mitre.org

http://secunia.com/advisories/27669

cve@mitre.org

http://security.gentoo.org/glsa/glsa-200609-12.xml

cve@mitre.org

http://sourceforge.net/project/shownotes.php?group_id=103&release_id=444295

cve@mitre.org

http://svn.sourceforge.net/viewvc/mailman/trunk/mailman/Mailman/Utils.py?r1=7859&r2=7923

cve@mitre.org

http://www.debian.org/security/2006/dsa-1188

cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDKSA-2006:165

cve@mitre.org

http://www.novell.com/linux/security/advisories/2006_25_sr.html

cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2007-0779.html

cve@mitre.org

http://www.securityfocus.com/archive/1/445992/100/0/threaded

cve@mitre.org

http://www.securityfocus.com/bid/19831

cve@mitre.org

http://www.securityfocus.com/bid/20021

cve@mitre.org

http://www.vupen.com/english/advisories/2006/3446

cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/28734

cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9756

af854a3a-2127-422b-91ae-364da2661108

http://mail.python.org/pipermail/mailman-announce/2006-September/000087.html

af854a3a-2127-422b-91ae-364da2661108

http://moritz-naumann.com/adv/0013/mailmanmulti/0013.txt

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/21732

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22011

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22020

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22227

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/22639

af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/27669

af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200609-12.xml

af854a3a-2127-422b-91ae-364da2661108

http://sourceforge.net/project/shownotes.php?group_id=103&release_id=444295

af854a3a-2127-422b-91ae-364da2661108

http://svn.sourceforge.net/viewvc/mailman/trunk/mailman/Mailman/Utils.py?r1=7859&r2=7923

af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2006/dsa-1188

af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2006:165

af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2006_25_sr.html

af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2007-0779.html

af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/445992/100/0/threaded

af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/19831

af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/20021

af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/3446

af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/28734

af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9756