Mandrake Linux Security Advisory : mailman (MDKSA-2005:037)
Medium Nessus Plugin ID 16461
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA vulnerability was discovered in Mailman, which allows a remote directory traversal exploit using URLs of the form '.../....///' to access private Mailman configuration data.
The vulnerability lies in the Mailman/Cgi/private.py file.
Updated packages correct this issue.
SolutionUpdate the affected mailman package.