Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2005-4153

Mailman 2.1.4 through 2.1.6 allows remote attackers to cause a denial of service via a message that causes the server to "fail with an Overflow on bad date data in a processed message," a different vulnerability than CVE-2005-3573.

Related bugs and status

CVE-2005-4153 (Candidate) is related to these bugs:

Bug #558226: email.Utils.parsedate can return bogus date

Summary				In	Importance	Status
	558226	email.Utils.parsedate can return bogus date		GNU Mailman	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

MANDRIVA: MDKSA-2005:222
SECUNIA: 18612
DEBIAN: DSA-955
UBUNTU: USN-242-1
BID: 16248
OSVDB: 21723
REDHAT: RHSA-2006:0204
TRUSTIX: 2006-0012
SECUNIA: 19167
SECUNIA: 19196
SECUNIA: 18449
SECUNIA: 18456
SGI: 20060401-01-U
SECUNIA: 19532
XF: mailman-utf8-scrubber-...
OVAL: oval:org.mitre.oval:de...