Description

Mailman 2.0.x before 2.0.6 allows remote attackers to gain access to list administrative pages when there is an empty site or list password, which is not properly handled during the call to the crypt function during authentication.

Remediation

References

CVE-2001-1132

Related Vulnerabilities

WordPress Plugin All-in-One WP Migration Remote Code Execution (2.0.2)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (7.1.12)

WordPress Plugin ToolBar to Share Cross-Site Request Forgery (2.0)

Magento Server-Side Request Forgery (SSRF) Vulnerability (CVE-2019-7911)

Oracle Application Server CVE-2009-1976 Vulnerability (CVE-2009-1976)

Severity

High

Classification

CVE-2001-1132

Tags

Missing Update Known Vulnerabilities