Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server.
Software | From | Fixed in |
---|---|---|
gnu / mailman | 2.1 | 2.1.x |
gnu / mailman | 2.1.1 | 2.1.1.x |
gnu / mailman | 2.1.2 | 2.1.2.x |
gnu / mailman | 2.1.3 | 2.1.3.x |
gnu / mailman | 2.1.4 | 2.1.4.x |
gnu / mailman | 2.1b1 | 2.1b1.x |