Lucene search
UbuntuUSN-2558-1HistoryApr 07, 2015 - 12:00 a.m.
Mailman vulnerability
2015-04-0700:00:00
ubuntu.com
39
CVSS2
7.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
8.9
Confidence
High
EPSS
0.031
Percentile
91.0%
Releases
- Ubuntu 14.10
- Ubuntu 14.04 ESM
- Ubuntu 12.04
Packages
- mailman - Powerful, web-based mailing list manager
Details
It was discovered that Mailman incorrectly handled special characters
in list names. A local attacker could use this issue to perform a path
traversal attack and execute arbitrary code as the Mailman user.
References
Related
openvas
openvas
Oracle: Security Advisory (ELSA-2015-1153)
2015-10-06 00:00:00
Ubuntu: Security Advisory (USN-2558-1)
2015-04-08 00:00:00
Fedora Update for mailman FEDORA-2015-5333
2015-07-07 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: mailman-2.1.20-1.fc22
2015-04-21 18:25:46
[SECURITY] Fedora 21 Update: mailman-2.1.20-1.fc21
2015-04-30 11:48:12
cvelist
cvelist
CVE-2015-2775
2015-04-13 14:00:00
nessus
nessus
CentOS 7 : mailman (CESA-2015:1153)
2015-06-24 00:00:00
Ubuntu 14.04 LTS : Mailman vulnerability (USN-2558-1)
2015-04-08 00:00:00
Debian DSA-3214-1 : mailman - security update
2015-04-08 00:00:00
osv
osv
mailman - security update
2015-04-06 00:00:00
mailman-2.1.23-1.2 on GA media
2024-06-15 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3214-1] mailman security update
2015-04-07 00:00:00
mailman directory traversal
2015-04-07 00:00:00
[USN-2558-1] Mailman vulnerability
2015-05-12 00:00:00
nvd
nvd
CVE-2015-2775
2015-04-13 14:59:02
debian
debian
[SECURITY] [DLA 186-1] mailman security update
2015-04-06 17:13:43
[SECURITY] [DSA 3214-1] mailman security update
2015-04-06 17:13:14
mageia
mageia
Updated mailman packages fix security vulnerabilities
2015-05-11 23:10:38
altlinux
altlinux
Security fix for the ALT Linux 9 package mailman version 5:2.1.21-alt0.1.rc2
2016-02-05 00:00:00
debiancve
debiancve
CVE-2015-2775
2015-04-13 14:59:02
centos
centos
mailman security update
2015-06-24 03:33:44
mailman security update
2015-07-26 14:12:20
redhat
redhat
(RHSA-2015:1153) Moderate: mailman security and bug fix update
2015-06-23 00:00:00
(RHSA-2015:1417) Moderate: mailman security and bug fix update
2015-07-22 00:00:00
ubuntucve
ubuntucve
CVE-2015-2775
2015-04-01 00:00:00
prion
prion
Directory traversal
2015-04-13 14:59:00
oraclelinux
oraclelinux
mailman security and bug fix update
2015-06-23 00:00:00
mailman security and bug fix update
2015-07-28 00:00:00
cve
cve
CVE-2015-2775
2015-04-13 14:59:02
freebsd
freebsd
mailman -- path traversal vulnerability
2015-03-27 00:00:00
amazon
amazon
Medium: mailman
2015-08-17 12:31:00
veracode
veracode
Path Traversal
2019-05-02 05:41:02
CVSS2
7.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
8.9
Confidence
High
EPSS
0.031
Percentile
91.0%
Related for USN-2558-1