Description

Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. NOTE: the vendor has disputed this vulnerability, stating that it is "unexploitable.

Remediation

References

CVE-2006-2191

Related Vulnerabilities

WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4)

WordPress Plugin MailUp newsletter sign-up form Security Bypass (1.3.2)

Oracle Application Server CVE-2006-5364 Vulnerability (CVE-2006-5364)

WordPress Plugin Easy Accept Payments for PayPal Cross-Site Scripting (4.9.9)

WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more PHAR Deserialization (2.9.8.5)

Severity

High

Classification

CVE-2006-2191

Tags

Missing Update Known Vulnerabilities