|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> Sympa unauthorised list creation security issue Vulnerability Assessment Details
|
Sympa unauthorised list creation security issue |
||
|
Checks for sympa version Detailed Explanation for this Vulnerability Assessment The remote host seems to be running sympa, an open source mailing list software. This version of Sympa has an authentication flaw within the web interface. A possible hacker, exploiting this flaw, would be able to bypass security mechanisms resulting in the ability to perform listmaster functions remotely. Solution : Update to version 4.1.2 or newer See also: http://www.sympa.org/ Network Security Threat Level: Medium Networks Security ID: 10941 Vulnerability Assessment Copyright: This script is Copyright (C) 2004 David Maciejak |
||
|
Workstations, Terminals |
|
||
|
No Discussions have been posted on this vulnerability. |