USN-1069-1 -- mailman vulnerabilitiesID: oval:org.secpod.oval:def:700238 | Date: (C)2011-02-23 (M)2023-02-20 |
Class: PATCH | Family: unix |
It was discovered that Mailman did not properly sanitize certain fields, resulting in cross-site scripting vulnerabilities. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain.
Platform: |
Ubuntu 8.04 |
Ubuntu 10.10 |
Ubuntu 10.04 |
Ubuntu 9.10 |
Ubuntu 6.06 |