VULHUB ™

Sympa is reported to be prone to an authentication bypass vulnerability when creating new mailing lists. This vulnerability presents itself upon creating a new mailing list. The list master approval process could reportedly be skipped by an attacker. An attacker may exploit this issue to create unauthorized mailing lists. This may possibly be used to forward UCE messages, or possibly other attacks. Versions prior to 4.1.2 are reportedly affected by this vulnerability.

Sympa is reported to be prone to an authentication bypass vulnerability when creating new mailing lists. This vulnerability presents itself upon creating a new mailing list. The list master approval process could reportedly be skipped by an attacker. An attacker may exploit this issue to create unauthorized mailing lists. This may possibly be used to forward UCE messages, or possibly other attacks. Versions prior to 4.1.2 are reportedly affected by this vulnerability.