CVE-2005-3573 : Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, whi

Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash).

Published 2005-11-16 07:42:00

Updated 2017-10-11 01:30:27

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2005-3573

Probability of exploitation activity in the next 30 days: 91.00%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2005-3573

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:N/A:P	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2005-3573

Products affected by CVE-2005-3573

GNU » Mailman » Version: 2.0 Update Beta3
cpe:2.3:a:gnu:mailman:2.0:beta3:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0 Update Beta4
cpe:2.3:a:gnu:mailman:2.0:beta4:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.12
cpe:2.3:a:gnu:mailman:2.0.12:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1
cpe:2.3:a:gnu:mailman:2.1:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.13
cpe:2.3:a:gnu:mailman:2.0.13:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.2
cpe:2.3:a:gnu:mailman:2.0.2:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.3
cpe:2.3:a:gnu:mailman:2.0.3:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.4
cpe:2.3:a:gnu:mailman:2.0.4:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.5
cpe:2.3:a:gnu:mailman:2.0.5:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0 Update Beta5
cpe:2.3:a:gnu:mailman:2.0:beta5:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.11
cpe:2.3:a:gnu:mailman:2.0.11:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.8
cpe:2.3:a:gnu:mailman:2.0.8:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.9
cpe:2.3:a:gnu:mailman:2.0.9:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.1
cpe:2.3:a:gnu:mailman:2.0.1:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.10
cpe:2.3:a:gnu:mailman:2.0.10:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.6
cpe:2.3:a:gnu:mailman:2.0.6:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.7
cpe:2.3:a:gnu:mailman:2.0.7:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.2
cpe:2.3:a:gnu:mailman:2.1.2:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.3
cpe:2.3:a:gnu:mailman:2.1.3:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.4
cpe:2.3:a:gnu:mailman:2.1.4:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.5
cpe:2.3:a:gnu:mailman:2.1.5:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.1 Update Beta1
cpe:2.3:a:gnu:mailman:2.1.1:beta1:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.0.14
cpe:2.3:a:gnu:mailman:2.0.14:*:*:*:*:*:*:*
Matching versions
GNU » Mailman » Version: 2.1.5.8
cpe:2.3:a:gnu:mailman:2.1.5.8:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2005-3573

Exploit prediction scoring system (EPSS) score for CVE-2005-3573

CVSS scores for CVE-2005-3573

References for CVE-2005-3573

Products affected by CVE-2005-3573