CVE-2006-1044
published 2006-03-07CVE-2006-1044: Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute…
PriorityP337high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
7.49%
93.7th percentile
Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ended on 20060603.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lsoft | listserv | — | — |
| lsoft | listserv | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/19106http://securitytracker.com/id?1015722http://www.kb.cert.org/vuls/id/841132http://www.lsoft.com/manuals/1.8e/relnotes/LISTSERV14.5-Release-Notes.html#wasecurityalerthttp://www.ngssoftware.com/advisories/listserv_3.txthttp://www.securityfocus.com/archive/1/426770/100/0/threadedhttp://www.securityfocus.com/bid/16951http://www.vupen.com/english/advisories/2006/0824https://exchange.xforce.ibmcloud.com/vulnerabilities/25168http://secunia.com/advisories/19106http://securitytracker.com/id?1015722http://www.kb.cert.org/vuls/id/841132http://www.lsoft.com/manuals/1.8e/relnotes/LISTSERV14.5-Release-Notes.html#wasecurityalerthttp://www.ngssoftware.com/advisories/listserv_3.txthttp://www.securityfocus.com/archive/1/426770/100/0/threadedhttp://www.securityfocus.com/bid/16951http://www.vupen.com/english/advisories/2006/0824https://exchange.xforce.ibmcloud.com/vulnerabilities/25168
2006-03-07
Published