MDKSA-2006:061 : mailman

Medium Nessus Plugin ID 21176


The remote Mandrake host is missing one or more security-related patches.

Description, in Mailman 2.1.5 and earlier, when using email 2.5 (part of Python), is susceptible to a DoS (mailman service stops delivering for the list in question) if it encounters a badly formed mime multipart message with only one part and that part has two blank lines between the first boundary and the end boundary.

Updated packages have been patched to correct this issue.


Update the affected package(s).

See Also

Plugin Details

Severity: Medium

ID: 21176

File Name: mandrake_MDKSA-2006-061.nasl

Version: $Revision: 1.11 $

Type: local

Published: 2006/04/04

Modified: 2012/09/07

Dependencies: 12634

Risk Information

Risk Factor: Medium


Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:mandriva:linux

Required KB Items: Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 2006/03/29

Vulnerability Publication Date: 2005/01/09

Reference Information

CVE: CVE-2006-0052

OSVDB: 24367