[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-2477-1 sympa -- authorization bypass

ID: oval:org.secpod.oval:def:600810Date: (C)2012-05-22   (M)2022-10-10
Class: PATCHFamily: unix




Several vulnerabilities have been discovered in Sympa, a mailing list manager, that allow to skip the scenario-based authorization mechanisms. This vulnerability allows to display the archives management page, and download and delete the list archives by unauthorized users.

Platform:
Debian 6.0
Product:
sympa
Reference:
DSA-2477-1
CVE-2012-2352
CVE    1
CVE-2012-2352
CPE    161
cpe:/a:sympa:sympa:6.0b.2
cpe:/a:sympa:sympa:6.0b.3
cpe:/a:sympa:sympa:6.0b.4
cpe:/a:sympa:sympa:1.3.4
...

© SecPod Technologies