CVE-2012-2352

The archive management (arc_manage) page in wwsympa/wwsympa.fcgi.in in Sympa before 6.1.11 does not check permissions, which allows remote attackers to list, read, and delete arbitrary list archives via vectors related to the (1) do_arc_manage, (2) do_arc_download, or (3) do_arc_delete functions.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
https://sourcesup.renater.fr/scm/viewvc.php/branches/sympa-6.0-branch/wwsympa/wwsympa.fcgi.in?root=sympa&r1=6706&r2=7358&pathrev=7358
http://www.openwall.com/lists/oss-security/2012/05/12/2
http://secunia.com/advisories/49237	Vendor Advisory
http://secunia.com/advisories/49045	Vendor Advisory
http://www.openwall.com/lists/oss-security/2012/05/12/8
http://www.openwall.com/lists/oss-security/2012/05/11/8
http://www.debian.org/security/2012/dsa-2477
https://www.sympa.org/distribution/latest-stable/NEWS
http://www.osvdb.org/81890
http://www.securityfocus.com/bid/53503

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:sympa:sympa:6.1.6:::::::*
	cpe:2.3:a:sympa:sympa:6.1.5:::::::*
	cpe:2.3:a:sympa:sympa:6.0.4:::::::*
	cpe:2.3:a:sympa:sympa:6.1b.4:::::::*
	cpe:2.3:a:sympa:sympa:6.0:::::::*
	cpe:2.3:a:sympa:sympa:6.0b.4:::::::*
	cpe:2.3:a:sympa:sympa:5.4:::::::*
	cpe:2.3:a:sympa:sympa:5.4b.1:::::::*
	cpe:2.3:a:sympa:sympa:5.3b.1:::::::*
	cpe:2.3:a:sympa:sympa:5.3a.10:::::::*
	cpe:2.3:a:sympa:sympa:5.1:::::::*
	cpe:2.3:a:sympa:sympa:3.3.3:::::::*
	cpe:2.3:a:sympa:sympa:2.2.3b:::::::*
	cpe:2.3:a:sympa:sympa:2.3.2:::::::*
	cpe:2.3:a:sympa:sympa:4.0.b3:::::::*
	cpe:2.3:a:sympa:sympa:2.5.4b:::::::*
	cpe:2.3:a:sympa:sympa:3.1b.7:::::::*
	cpe:2.3:a:sympa:sympa:5.0:::::::*
	cpe:2.3:a:sympa:sympa:4.0.a4:::::::*
	cpe:2.3:a:sympa:sympa:2.2.1b:::::::*
	cpe:2.3:a:sympa:sympa:3.0:::::::*
	cpe:2.3:a:sympa:sympa:4.0.b2:::::::*
	cpe:2.3:a:sympa:sympa:2.7.1:::::::*
	cpe:2.3:a:sympa:sympa:2.7:::::::*
	cpe:2.3:a:sympa:sympa:4.0.a3:::::::*
	cpe:2.3:a:sympa:sympa:2.3.1:::::::*
	cpe:2.3:a:sympa:sympa:3.3.4b.3:::::::*
	cpe:2.3:a:sympa:sympa:2.5.3b:::::::*
	cpe:2.3:a:sympa:sympa:3.3.6b.1:::::::*
	cpe:2.3:a:sympa:sympa:3.3.6b.2:::::::*
	cpe:2.3:a:sympa:sympa:3.2:::::::*
	cpe:2.3:a:sympa:sympa:3.1.1:::::::*
	cpe:2.3:a:sympa:sympa:4.1:::::::*
	cpe:2.3:a:sympa:sympa:6.0.6:::::::*
	cpe:2.3:a:sympa:sympa:1.2.0:::::::*
	cpe:2.3:a:sympa:sympa:5.3:::::::*
	cpe:2.3:a:sympa:sympa:4.2b.3:::::::*
	cpe:2.3:a:sympa:sympa:5.0a:::::::*
	cpe:2.3:a:sympa:sympa:1.3.4-1:::::::*
	cpe:2.3:a:sympa:sympa:5.2b:::::::*
	cpe:2.3:a:sympa:sympa:0.004:::::::*
	cpe:2.3:a:sympa:sympa:4.0.a7:::::::*
	cpe:2.3:a:sympa:sympa:6.0b.1:::::::*
	cpe:2.3:a:sympa:sympa:3.3.4b.8:::::::*
	cpe:2.3:a:sympa:sympa:4.2b.1:::::::*
	cpe:2.3:a:sympa:sympa:5.4.3:::::::*
	cpe:2.3:a:sympa:sympa:6.0.5:::::::*
	cpe:2.3:a:sympa:sympa:4.0.a6:::::::*
	cpe:2.3:a:sympa:sympa:5.3b.4:::::::*
	cpe:2.3:a:sympa:sympa:3.3.6b.4:::::::*
	cpe:2.3:a:sympa:sympa:3.3.6b.5:::::::*
	cpe:2.3:a:sympa:sympa:1.3.4:::::::*
	cpe:2.3:a:sympa:sympa:5.0a.1:::::::*
	cpe:2.3:a:sympa:sympa:5.2b2:::::::*
	cpe:2.3:a:sympa:sympa:5.4.1:::::::*
	cpe:2.3:a:sympa:sympa:6.1.1:::::::*
	cpe:2.3:a:sympa:sympa:5.1.2:::::::*
	cpe:2.3:a:sympa:sympa:6.1.8:::::::*
	cpe:2.3:a:sympa:sympa:3.3.6b.3:::::::*
	cpe:2.3:a:sympa:sympa:6.1.2:::::::*
	cpe:2.3:a:sympa:sympa:5.4.2:::::::*
	cpe:2.3:a:sympa:sympa:6.1b.6:::::::*
	cpe:2.3:a:sympa:sympa:5.2:::::::*
	cpe:2.3:a:sympa:sympa:6.0.1:::::::*
cpe:2.3:a:sympa:sympa:0.003:::::::*
cpe:2.3:a:sympa:sympa:6.0.3:::::::*
cpe:2.3:a:sympa:sympa:6.0.2:::::::*
cpe:2.3:a:sympa:sympa:6.1.9:::::::*
cpe:2.3:a:sympa:sympa:3.3.6b.6:::::::*
cpe:2.3:a:sympa:sympa:1.2.1:::::::*
cpe:2.3:a:sympa:sympa:6.1.7:::::::*
cpe:2.3:a:sympa:sympa:6.1b.1:::::::*
cpe:2.3:a:sympa:sympa::::::::
cpe:2.3:a:sympa:sympa:5.3b.5:::::::*
cpe:2.3:a:sympa:sympa:4.0.a5:::::::*
cpe:2.3:a:sympa:sympa:4.0.a8:::::::*
cpe:2.3:a:sympa:sympa:5.3b.3:::::::*
cpe:2.3:a:sympa:sympa:3.2.2a:::::::*
cpe:2.3:a:sympa:sympa:3.3b.4:::::::*
cpe:2.3:a:sympa:sympa:2.7b.2:::::::*
cpe:2.3:a:sympa:sympa:2.2b:::::::*
cpe:2.3:a:sympa:sympa:2.2.5:::::::*
cpe:2.3:a:sympa:sympa:0.005:::::::*
cpe:2.3:a:sympa:sympa:0.007:::::::*
cpe:2.3:a:sympa:sympa:2.2.2b:::::::*
cpe:2.3:a:sympa:sympa:3.1:::::::*
cpe:2.3:a:sympa:sympa:3.0a:::::::*
cpe:2.3:a:sympa:sympa:5.0b:::::::*
cpe:2.3:a:sympa:sympa:1.4.0:::::::*
cpe:2.3:a:sympa:sympa:2.5.1:::::::*
cpe:2.3:a:sympa:sympa:5.4a.4:::::::*
cpe:2.3:a:sympa:sympa:3.3.1:::::::*
cpe:2.3:a:sympa:sympa:4.0.a1:::::::*
cpe:2.3:a:sympa:sympa:6.1b.3:::::::*
cpe:2.3:a:sympa:sympa:3.4:::::::*
cpe:2.3:a:sympa:sympa:5.3.2:::::::*
cpe:2.3:a:sympa:sympa:3.1b.13:::::::*
cpe:2.3:a:sympa:sympa:5.4a.2:::::::*
cpe:2.3:a:sympa:sympa:1.2.2:::::::*
cpe:2.3:a:sympa:sympa:2.6:::::::*
cpe:2.3:a:sympa:sympa:1.3.2:::::::*
cpe:2.3:a:sympa:sympa:3.3.4b.7:::::::*
cpe:2.3:a:sympa:sympa:2.3.4:::::::*
cpe:2.3:a:sympa:sympa:5.3a.9:::::::*
cpe:2.3:a:sympa:sympa:3.2.1:::::::*
cpe:2.3:a:sympa:sympa:6.1b.2:::::::*
cpe:2.3:a:sympa:sympa:1.3.1-2:::::::*
cpe:2.3:a:sympa:sympa:2.3.3:::::::*
cpe:2.3:a:sympa:sympa:2.6.1:::::::*
cpe:2.3:a:sympa:sympa:0.009:::::::*
cpe:2.3:a:sympa:sympa:1.3.3:::::::*
cpe:2.3:a:sympa:sympa:3.3.4b.5:::::::*
cpe:2.3:a:sympa:sympa:2.4:::::::*
cpe:2.3:a:sympa:sympa:6.0b.2:::::::*
cpe:2.3:a:sympa:sympa:2.7b.1:::::::*
cpe:2.3:a:sympa:sympa:3.1b.8:::::::*
cpe:2.3:a:sympa:sympa:3.3.5:::::::*
cpe:2.3:a:sympa:sympa:3.1b.9:::::::*
cpe:2.3:a:sympa:sympa:3.3b.3:::::::*
cpe:2.3:a:sympa:sympa:5.3a.8:::::::*
cpe:2.3:a:sympa:sympa:0.001:::::::*
cpe:2.3:a:sympa:sympa:5.0b.1:::::::*
cpe:2.3:a:sympa:sympa:2.7.2:::::::*
cpe:2.3:a:sympa:sympa:3.1b.10:::::::*
cpe:2.3:a:sympa:sympa:1.3.1:::::::*
cpe:2.3:a:sympa:sympa:0.006:::::::*
cpe:2.3:a:sympa:sympa:0.002:::::::*
cpe:2.3:a:sympa:sympa:0.010:::::::*
cpe:2.3:a:sympa:sympa:4.0.a9:::::::*
cpe:2.3:a:sympa:sympa:0.011:::::::*
cpe:2.3:a:sympa:sympa:2.3.0:::::::*
cpe:2.3:a:sympa:sympa:3.0b.4:::::::*
cpe:2.3:a:sympa:sympa:1.4.1:::::::*
cpe:2.3:a:sympa:sympa:2.2.7:::::::*
cpe:2.3:a:sympa:sympa:6.1.3:::::::*
cpe:2.3:a:sympa:sympa:3.3.4b.9:::::::*
cpe:2.3:a:sympa:sympa:2.5.2:::::::*
cpe:2.3:a:sympa:sympa:2.5:::::::*
cpe:2.3:a:sympa:sympa:3.1b.12:::::::*
cpe:2.3:a:sympa:sympa:1.4.2-1:::::::*
cpe:2.3:a:sympa:sympa:3.3:::::::*
cpe:2.3:a:sympa:sympa:6.1.4:::::::*
cpe:2.3:a:sympa:sympa:2.2.4:::::::*
cpe:2.3:a:sympa:sympa:3.0a.1:::::::*
cpe:2.3:a:sympa:sympa:3.3.4b.6:::::::*
cpe:2.3:a:sympa:sympa:2.7b.3:::::::*
cpe:2.3:a:sympa:sympa:2.7a:::::::*
cpe:2.3:a:sympa:sympa:2.7.3:::::::*
cpe:2.3:a:sympa:sympa:4.0.b1:::::::*
cpe:2.3:a:sympa:sympa:1.3.0:::::::*
cpe:2.3:a:sympa:sympa:1.5:::::::*
cpe:2.3:a:sympa:sympa:2.3:beta::::::
cpe:2.3:a:sympa:sympa:3.0b.8:::::::*
cpe:2.3:a:sympa:sympa:6.0b.3:::::::*
cpe:2.3:a:sympa:sympa:1.4.2:::::::*
cpe:2.3:a:sympa:sympa:3.3.4b.4:::::::*
cpe:2.3:a:sympa:sympa:0.008:::::::*
cpe:2.3:a:sympa:sympa:3.0b.9:::::::*
cpe:2.3:a:sympa:sympa:2.2.6:::::::*

Information

Published : 2012-05-31 10:55

Updated : 2012-08-13 20:37

NVD link : CVE-2012-2352

Mitre link : CVE-2012-2352

JSON object : View

CWE

CWE-264

Permissions, Privileges, and Access Controls

Products Affected

sympa

sympa

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://sourcesup.renater.fr/scm/viewvc.php/branches/sympa-6.0-branch/wwsympa/wwsympa.fcgi.in?root=sympa&r1=6706&r2=7358&pathrev=7358", "name": "https://sourcesup.renater.fr/scm/viewvc.php/branches/sympa-6.0-branch/wwsympa/wwsympa.fcgi.in?root=sympa&r1=6706&r2=7358&pathrev=7358", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.openwall.com/lists/oss-security/2012/05/12/2", "name": "[oss-security] 20120511 Re: CVE request: sympa (try again)", "tags": [], "refsource": "MLIST"}, {"url": "http://secunia.com/advisories/49237", "name": "49237", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/49045", "name": "49045", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.openwall.com/lists/oss-security/2012/05/12/8", "name": "[oss-security] 20120512 Re: CVE request: sympa (try again)", "tags": [], "refsource": "MLIST"}, {"url": "http://www.openwall.com/lists/oss-security/2012/05/11/8", "name": "[oss-security] 20120511 CVE request: sympa (try again)", "tags": [], "refsource": "MLIST"}, {"url": "http://www.debian.org/security/2012/dsa-2477", "name": "DSA-2477", "tags": [], "refsource": "DEBIAN"}, {"url": "https://www.sympa.org/distribution/latest-stable/NEWS", "name": "https://www.sympa.org/distribution/latest-stable/NEWS", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.osvdb.org/81890", "name": "81890", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.securityfocus.com/bid/53503", "name": "53503", "tags": [], "refsource": "BID"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The archive management (arc_manage) page in wwsympa/wwsympa.fcgi.in in Sympa before 6.1.11 does not check permissions, which allows remote attackers to list, read, and delete arbitrary list archives via vectors related to the (1) do_arc_manage, (2) do_arc_download, or (3) do_arc_delete functions."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-264"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2012-2352", "ASSIGNER": "secalert@redhat.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2012-05-31T17:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3a.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.3b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.b3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.5.4b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.1b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.b2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.5.3b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.2b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.0a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.4-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.2b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.004:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.2b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.0a.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.2b2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1b.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.003:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.6b.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "6.1.10"}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3b.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.2.2a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7b.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.005:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.007:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.2b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.0b:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4a.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.13:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.4a.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3a.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1b.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.1-2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.6.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.009:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0b.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.3a.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.001:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:5.0b.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.10:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.006:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.002:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.010:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.a9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.011:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.4.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.7:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.1b.12:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.4.2-1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.1.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0a.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7a:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.7.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:4.0.b1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.3:beta:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0b.8:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:6.0b.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:1.4.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.3.4b.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:0.008:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:3.0b.9:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:sympa:sympa:2.2.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2012-08-14T03:37Z"}

7.5 /10