Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2170.NASL
HistoryFeb 21, 2011 - 12:00 a.m.

Debian DSA-2170-1 : mailman - several vulnerabilities

2011-02-2100:00:00
This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.003

Percentile

71.1%

JSON

Two cross site scripting vulnerabilities were been discovered in Mailman, a web-based mailing list manager. These allowed an attacker to retrieve session cookies via inserting crafted JavaScript into confirmation messages (CVE-2011-0707 ) and in the list admin interface (CVE-2010-3089; oldstable only).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2170. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(52037);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2010-3089", "CVE-2011-0707");
  script_bugtraq_id(43187);
  script_xref(name:"DSA", value:"2170");

  script_name(english:"Debian DSA-2170-1 : mailman - several vulnerabilities");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Two cross site scripting vulnerabilities were been discovered in
Mailman, a web-based mailing list manager. These allowed an attacker
to retrieve session cookies via inserting crafted JavaScript into
confirmation messages (CVE-2011-0707 ) and in the list admin interface
(CVE-2010-3089; oldstable only)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2011-0707"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2010-3089"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/mailman"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2011/dsa-2170"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the mailman packages.

For the oldstable distribution (lenny), these problems have been fixed
in version 1:2.1.11-11+lenny2.

For the stable distribution (squeeze), this problem has been fixed in
version 1:2.1.13-5."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:mailman");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:5.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/02/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/02/21");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"5.0", prefix:"mailman", reference:"1:2.1.11-11+lenny2")) flag++;
if (deb_check(release:"6.0", prefix:"mailman", reference:"1:2.1.13-5")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Related

nessus 26
fedora 5
openvas 36
ubuntu 1
oraclelinux 2
osv 2
debian 1
redhat 2
centos 1
securityvulns 8
prion 3
freebsd 2
veracode 2
cvelist 2
nvd 3
cve 3
altlinux 1
debiancve 2
ubuntucve 2
nessus
nessus
SuSE 10 Security Update : mailman (ZYPP Patch Number 7484)
2011-12-13 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : mailman vulnerabilities (USN-1069-1)
2011-02-23 00:00:00
Oracle Linux 6 : mailman (ELSA-2011-0308)
2013-07-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: mailman-2.1.12-17.fc13
2011-03-21 20:56:57
[SECURITY] Fedora 14 Update: mailman-2.1.13-7.fc14
2011-03-21 21:00:30
[SECURITY] Fedora 15 Update: mailman-2.1.14-5.fc15
2011-03-22 03:44:29
openvas
openvas
Debian: Security Advisory (DSA-2170-1)
2011-03-09 00:00:00
Fedora Update for mailman FEDORA-2011-2102
2011-03-24 00:00:00
Ubuntu: Security Advisory (USN-1069-1)
2011-02-28 00:00:00
ubuntu
ubuntu
Mailman vulnerabilities
2011-02-22 00:00:00
oraclelinux
oraclelinux
mailman security update
2011-03-01 00:00:00
mailman security update
2011-03-02 00:00:00
osv
osv
mailman - several vulnerabilities
2011-02-18 00:00:00
mailman-2.1.23-1.2 on GA media
2024-06-15 00:00:00
debian
debian
[SECURITY] [DSA 2170-1] mailman security update
2011-02-20 11:59:55
redhat
redhat
(RHSA-2011:0308) Moderate: mailman security update
2011-03-01 00:00:00
(RHSA-2011:0307) Moderate: mailman security update
2011-03-01 00:00:00
centos
centos
mailman security update
2011-03-03 03:36:16
securityvulns
securityvulns
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2011-02-26 00:00:00
[ MDVSA-2011:036 ] mailman
2011-02-26 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2010-10-05 00:00:00
prion
prion
Cross site scripting
2011-02-22 19:00:00
Cross site scripting
2010-09-15 20:00:00
Design/Logic Flaw
2014-02-10 18:15:00
freebsd
freebsd
mailman -- XSS vulnerability
2011-02-13 00:00:00
Mailman -- cross-site scripting in web interface
2010-09-14 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2020-04-10 00:53:46
Cross-site Scripting (XSS)
2020-04-10 00:53:46
cvelist
cvelist
CVE-2011-0707
2011-02-22 18:00:00
CVE-2010-3089
2010-09-15 19:00:00
nvd
nvd
CVE-2011-0707
2011-02-22 19:00:02
CVE-2010-3089
2010-09-15 20:00:02
CVE-2010-3090
2014-02-10 18:15:08
cve
cve
CVE-2011-0707
2011-02-22 19:00:02
CVE-2010-3089
2010-09-15 20:00:02
CVE-2010-3090
2014-02-10 18:15:08
altlinux
altlinux
Security fix for the ALT Linux 9 package mailman version 5:2.1.15-alt0.2
2012-10-17 00:00:00
debiancve
debiancve
CVE-2011-0707
2011-02-22 19:00:02
CVE-2010-3089
2010-09-15 20:00:02
ubuntucve
ubuntucve
CVE-2011-0707
2011-02-18 00:00:00
CVE-2010-3089
2010-09-15 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

EPSS

0.003

Percentile

71.1%

JSON
Related for DEBIAN_DSA-2170.NASL
nessus26fedora5openvas36ubuntu1oraclelinux2osv2debian1redhat2centos1securityvulns8prion3freebsd2veracode2cvelist2nvd3cve3altlinux1debiancve2ubuntucve2