Description
Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name.
References (12)
Core 12
Core References
Issue Tracking x_refsource_confirm
https://bugs.launchpad.net/mailman/+bug/1437145
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3214
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1153.html
Vendor Advisory vendor-advisory
x_refsource_redhat
http://rhn.redhat.com/errata/RHSA-2015-1417.html
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/154911.html
Vendor Advisory vendor-advisory
x_refsource_ubuntu
http://www.ubuntu.com/usn/USN-2558-1
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/156742.html
Vendor Advisory mailing-list
x_refsource_mlist
https://mail.python.org/pipermail/mailman-developers/2015-March/024871.html
Various Sources mailing-list
x_refsource_mlist
https://mail.python.org/pipermail/mailman-announce/2015-March/000209.html
Exploit mailing-list
x_refsource_mlist
https://mail.python.org/pipermail/mailman-developers/2015-March/024875.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1032033
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/73922
Scores
EPSS
0.0669
EPSS Percentile
91.4%
Details
CWE
CWE-22
Status
published
Products (6)
canonical/ubuntu_linux
12.04
canonical/ubuntu_linux
14.04
canonical/ubuntu_linux
14.10
debian/debian_linux
7.0
gnu/mailman
< 2.1.19
redhat/enterprise_linux
7.0
Published
Apr 13, 2015
Tracked Since
Feb 18, 2026