Unrated severityNVD Advisory· Published Mar 7, 2006· Updated Apr 16, 2026

CVE-2006-1044

Description

Multiple buffer overflows in LISTSERV 14.3 and 14.4, including LISTSERV Lite and HPO, with the web archive interface enabled, allow remote attackers to execute arbitrary code via unknown attack vectors related to the WA CGI. NOTE: technical details will be released after the grace period has ended on 20060603.

Affected products

Lsoft/Listserv2 versions
cpe:2.3:a:lsoft:listserv:14.3:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:lsoft:listserv:14.3:*:*:*:*:*:*:*
- cpe:2.3:a:lsoft:listserv:14.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdPatchVendor Advisory
www.lsoft.com/manuals/1.8e/relnotes/LISTSERV14.5-Release-Notes.htmlnvdPatch
www.securityfocus.com/bid/16951nvdPatch
www.kb.cert.org/vuls/id/841132nvdUS Government Resource
secunia.com/advisories/19106nvd
www.ngssoftware.com/advisories/listserv_3.txtnvd
www.securityfocus.com/archive/1/426770/100/0/threadednvd
www.vupen.com/english/advisories/2006/0824nvd
exchange.xforce.ibmcloud.com/vulnerabilities/25168nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.020
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000