SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (E-mail Server)  >   Mailman Vendors:   GNU [multiple authors]
Mailman Transport Script Directory Traversal Bug Lets Local Users Gain Elevated Privileges
SecurityTracker Alert ID:  1032033
SecurityTracker URL:  http://securitytracker.com/id/1032033
CVE Reference:   CVE-2015-2775   (Links to External Site)
Date:  Apr 7 2015
Impact:   User access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): prior to 2.1.20
Description:   A vulnerability was reported in Mailman. A local user can obtain elevated privileges on the target system.

On systems where the Mailman Transport for Exim or the Postfix postfix_to_mailman.py transport is used, a local user can create a specially crafted directory containing a 'config.pck' file and then send email to an address containing directory traversal characters to cause Mailman to execute the file.

Impact:   A local user can obtain Mailman privileges on the target system.
Solution:   The vendor has issued a fix (2.1.20).

The vendor's advisory is available at:

https://mail.python.org/pipermail/mailman-announce/2015-March/000209.html

Vendor URL:  mailman.sourceforge.net/ (Links to External Site)
Cause:   Input validation error
Underlying OS:  Linux (Any), UNIX (Any)

Message History:   This archive entry has one or more follow-up message(s) listed below.
Apr 7 2015 (Ubuntu Issues Fix) Mailman Transport Script Directory Traversal Bug Lets Local Users Gain Elevated Privileges
Ubuntu has issued a fix for Ubuntu 12.04 LTS, 14.04 LTS, and 14.10.
Jun 25 2015 (CentOS Issues Fix) Mailman Transport Script Directory Traversal Bug Lets Local Users Gain Elevated Privileges
CentOS has issued a fix for CentOS 7.
Jul 24 2015 (Red Hat Issues Fix) Mailman Transport Script Directory Traversal Bug Lets Local Users Gain Elevated Privileges
Red Hat has issued a fix for Red Hat Enterprise Linux 6.
Jul 29 2015 (Oracle Issues Fix for Oracle Linux) Mailman Transport Script Directory Traversal Bug Lets Local Users Gain Elevated Privileges
Oracle has issued a fix for Oracle Linux 6.



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC