CVE-2005-0080

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.4%
top 39.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
GNU MailmanUbuntu Ubuntu Linux
Timeline
PublishedMay 2
Latest updateMay 1

Description

The 55_options_traceback.dpatch patch for mailman 2.1.5 in Ubuntu 4.10 displays a different error message depending on whether the e-mail address is subscribed to a private list, which allows remote attackers to determine the list membership for a given e-mail address.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDgnu/mailman2.1.5

Also affects: Ubuntu Linux 4.10

🔴Vulnerability Details

2
GHSA
GHSA-6h2p-3jmw-582j: The 55_options_traceback2022-05-01
CVEList
CVE-2005-0080: The 55_options_traceback2005-01-19