Description

Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash).

Remediation

References

CVE-2005-3573

Related Vulnerabilities

OpenSSL Cryptographic Issues Vulnerability (CVE-2014-3470)

Drupal Core 4.5.x Mail Header Injection (4.5.0 - 4.5.7)

XWiki CVE-2007-4898 Vulnerability (CVE-2007-4898)

Oracle HTTP Server Other Vulnerability (CVE-2007-0282)

Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-0245)

Severity

Medium

Classification

CVE-2005-3573

Tags

Missing Update Known Vulnerabilities