CVE-2015-2775

Publication date

2015-04-13 14:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name.