Majordomo

CVEs (5)

CVE	Risk	CVSS	EPSS	Published	Description
CVE-2000-0037	0.03	—	0.00	Dec 28, 1999	Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
CVE-2000-0035	0.03	—	0.00	Dec 28, 1999	resend command in Majordomo allows local users to gain privileges via shell metacharacters.
CVE-1999-0207	0.03	—	0.06	Jun 9, 1994	Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command.
CVE-2003-1367	0.00	—	0.00	Dec 31, 2003	The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
CVE-1999-1220	0.00	—	0.02	Aug 24, 1997	Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configuration file, via shell metacharacters in the Reply-To header.

CVE-2000-0037Dec 28, 1999
risk 0.03cvss —epss 0.00
Majordomo wrapper allows local users to gain privileges by specifying an alternate configuration file.
CVE-2000-0035Dec 28, 1999
risk 0.03cvss —epss 0.00
resend command in Majordomo allows local users to gain privileges via shell metacharacters.
CVE-1999-0207Jun 9, 1994
risk 0.03cvss —epss 0.06
Remote attacker can execute commands through Majordomo using the Reply-To field and a "lists" command.
CVE-2003-1367Dec 31, 2003
risk 0.00cvss —epss 0.00
The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
CVE-1999-1220Aug 24, 1997
risk 0.00cvss —epss 0.02
Majordomo 1.94.3 and earlier allows remote attackers to execute arbitrary commands when the advertise or noadvertise directive is used in a configuration file, via shell metacharacters in the Reply-To header.