Great Circle Associates Majordomo vulnerabilities
5 known vulnerabilities affecting great_circle_associates/majordomo.
Total CVEs
5
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-1999-0207P3HIGHCVSS 7.5PoCv1.90v1.911994-06-09
CVE-1999-0207 [HIGH] CVE-1999-0207: Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" comman
Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command.
nvd
CVE-2000-0035P4MEDIUMCVSS 4.6PoC≤ 1.94.41999-12-28
CVE-2000-0035 [MEDIUM] CVE-2000-0035: resend command in Majordomo allows local users to gain privileges via shell metacharacters.
resend command in Majordomo allows local users to gain privileges via shell metacharacters.
nvd
CVE-2000-0037P4MEDIUMCVSS 4.6PoCv1.94.4v1.94.51999-12-28
CVE-2000-0037 [MEDIUM] CVE-2000-0037: Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration fil
Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
nvd
CVE-1999-1220P4HIGHCVSS 7.5≤ 1.94.31997-08-24
CVE-1999-1220 [HIGH] CVE-1999-1220: Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertis
Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configuration file, via shell metacharacters in the Reply-To header.
nvd
CVE-2003-1367P4HIGHCVSS 7.8≤ 2.0v1.94.4+1 more2003-12-31
CVE-2003-1367 [HIGH] CWE-16 CVE-2003-1367: The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to
The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
nvd