aru Posted May 27, 2004 Report Share Posted May 27, 2004 Mandrakesoft Security Advisories MDKSA-2004:051 : mailman Updated mailman packages fix password retrieval vulnerability May 26th, 2004 Mailman versions >= 2.1 have an issue where 3rd parties can retrieve member passwords from the server.The updated packages have a patch backported from 2.1.5 to correct the issue. The released versions of Mandrake GNU/Linux affected are: 9.2 10.0 Full information about this advisory, including the updated packages, is available at: www.mandrakesoft.com/security/advisories?name=MDKSA-2004:051 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?n...e=CAN-2004-0412 Posted automatically by aru (mdksec2mub v0.0.9) Link to comment Share on other sites More sharing options...
Recommended Posts