Unrated severityNVD Advisory· Published Feb 16, 2001· Updated Apr 16, 2026
CVE-2001-0021
CVE-2001-0021
Description
MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter.
Affected products
17cpe:2.3:a:endymion:mailman_webmail:3.0:*:*:*:*:*:*:*+ 16 more
- cpe:2.3:a:endymion:mailman_webmail:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.10:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.11:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.12:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.13:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.14:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.15:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.16:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.18:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.19:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.20:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.21:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.22:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.23:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.24:*:*:*:*:*:*:*
- cpe:2.3:a:endymion:mailman_webmail:3.0.25:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- www.securityfocus.com/bid/2063nvdPatchVendor Advisory
- archives.neohapsis.com/archives/bugtraq/2000-12/0057.htmlnvdExploitPatchVendor Advisory
- www.endymion.com/products/mailman/history.htmnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/5649nvd
News mentions
0No linked articles in our index yet.