Description
The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary and the end boundary.
Remediation
References
Related Vulnerabilities
WordPress Plugin Conditional Marketing Mailer for WooCommerce Cross-Site Request Forgery (1.5.2)
MediaWiki Other Vulnerability (CVE-2005-3167)
ZenCart Improper Input Validation Vulnerability (CVE-2009-4321)
WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.0)
WordPress Plugin Roomcloud Multiple Cross-Site Scripting Vulnerabilities (1.1)