Re: Mailman: cross-site scripting bug

From: Barry Warsaw (barry@python.org)
Date: 01/26/03

Next message: Grégory: "[SCSA-003] Multiple Cross Site Scripting & Script Injection Vulnerabilities in Nuked-Klan"

Previous message: Philipp Wuensche: "Re: New security tool: ike-scan (IPsec IKE scanner) released"
Maybe in reply to: webmaster@procheckup.com: "Mailman: cross-site scripting bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 26 Jan 2003 21:52:32 -0000
From: Barry Warsaw <barry@python.org>
To: bugtraq@securityfocus.com

('binary' encoding is not supported, stored as-is) In-Reply-To: <20030124143507.32126.qmail@mail.securityfocus.com>

A fix for this has now been posted. Please see the
xss-2.1.0-patch.txt file referenced here:

http://sourceforge.net/project/showfiles.php?group_id=103

This fix will be part of Mailman 2.1.1 when that
release is ready.

Next message: Grégory: "[SCSA-003] Multiple Cross Site Scripting & Script Injection Vulnerabilities in Nuked-Klan"
Previous message: Philipp Wuensche: "Re: New security tool: ike-scan (IPsec IKE scanner) released"
Maybe in reply to: webmaster@procheckup.com: "Mailman: cross-site scripting bug"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

www.derkeiler.com > Mailing-Lists > securityfocus > bugtraq > 2003-01