Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-0564
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-05 Feb, 2008 | 02:00
Updated At-15 Oct, 2018 | 22:01

Multiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) editing templates and (2) the list's "info attribute" in the web administrator interface, a different vulnerability than CVE-2006-3636.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.04.3MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Type: Primary
Version: 2.0
Base score: 4.3
Base severity: MEDIUM
Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N
CPE Matches
mailman
mailman
>>mailman>>Versions up to 2.1.10b(inclusive)
cpe:2.3:a:mailman:mailman:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-79Primarynvd@nist.gov
CWE ID: CWE-79
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
Organization : Red Hat
Last Modified : 2008-03-07T00:00:00

Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=431526 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here: http://www.redhat.com/security/updates/classification/

References
HyperlinkSourceResource
http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.htmlcve@mitre.org
N/A
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.htmlcve@mitre.org
N/A
http://mail.python.org/pipermail/mailman-announce/2008-February/000096.htmlcve@mitre.org
N/A
http://secunia.com/advisories/28794cve@mitre.org
N/A
http://secunia.com/advisories/28916cve@mitre.org
N/A
http://secunia.com/advisories/28966cve@mitre.org
N/A
http://secunia.com/advisories/29249cve@mitre.org
N/A
http://secunia.com/advisories/29388cve@mitre.org
N/A
http://secunia.com/advisories/31687cve@mitre.org
N/A
http://secunia.com/advisories/43549cve@mitre.org
N/A
http://sourceforge.net/project/shownotes.php?release_id=559308&group_id=103cve@mitre.org
N/A
http://support.apple.com/kb/HT4077cve@mitre.org
N/A
http://wiki.rpath.com/Advisories:rPSA-2008-0056cve@mitre.org
N/A
http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:061cve@mitre.org
N/A
http://www.redhat.com/support/errata/RHSA-2011-0307.htmlcve@mitre.org
N/A
http://www.securityfocus.com/archive/1/488236/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/27630cve@mitre.org
N/A
http://www.ubuntu.com/usn/usn-586-1cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2008/0422cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2011/0542cve@mitre.org
N/A
https://bugzilla.redhat.com/show_bug.cgi?id=431526cve@mitre.org
N/A
https://issues.rpath.com/browse/RPL-2207cve@mitre.org
N/A
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00452.htmlcve@mitre.org
N/A
Hyperlink: http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://mail.python.org/pipermail/mailman-announce/2008-February/000096.html
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/28794
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/28916
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/28966
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/29249
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/29388
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/31687
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/43549
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://sourceforge.net/project/shownotes.php?release_id=559308&group_id=103
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://support.apple.com/kb/HT4077
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://wiki.rpath.com/Advisories:rPSA-2008-0056
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.mandriva.com/en/security/advisories?name=MDVSA-2008:061
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.redhat.com/support/errata/RHSA-2011-0307.html
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/archive/1/488236/100/0/threaded
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/27630
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.ubuntu.com/usn/usn-586-1
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.vupen.com/english/advisories/2008/0422
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.vupen.com/english/advisories/2011/0542
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://bugzilla.redhat.com/show_bug.cgi?id=431526
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://issues.rpath.com/browse/RPL-2207
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00452.html
Source: cve@mitre.org
Resource: N/A
Change History
0Changes found
Details not found