CVE-2006-2191
Mailman < 2.1.9 - Remote Code Execution via Format String Vulnerability
Title source: llmDescription
Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. NOTE: the vendor has disputed this vulnerability, stating that it is "unexploitable.
References (5)
Core 5
Core References
Patch mailing-list
x_refsource_mlist
http://mail.python.org/pipermail/mailman-announce/2006-September/000087.html
Various Sources mailing-list
x_refsource_mlist
http://people.debian.org/~terpstra/message/20060906.155339.0c0732a4.en.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/22639
Vendor Advisory vendor-advisory
x_refsource_suse
http://www.novell.com/linux/security/advisories/2006_25_sr.html
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/21732
Scores
EPSS
0.0086
EPSS Percentile
75.2%
Details
Status
published
Products (1)
gnu/mailman
< 2.1.8
Published
Sep 19, 2006
Tracked Since
Feb 18, 2026