Unrated severityNVD Advisory· Published Sep 19, 2006· Updated Apr 16, 2026

CVE-2006-2191

Description

Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. NOTE: the vendor has disputed this vulnerability, stating that it is "unexploitable.

Affected products

GNU/Mailman
cpe:2.3:a:gnu:mailman:*:*:*:*:*:*:*:*
Range: <=2.1.8

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

mail.python.org/pipermail/mailman-announce/2006-September/000087.htmlnvdPatch
people.debian.org/~terpstra/message/20060906.155339.0c0732a4.en.htmlnvd
secunia.com/advisories/21732nvd
secunia.com/advisories/22639nvd
www.novell.com/linux/security/advisories/2006_25_sr.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000