L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
BID:16951
Info
L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
| Bugtraq ID: | 16951 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 04 2006 12:00AM |
| Updated: | Mar 08 2006 08:20PM |
| Credit: | Discovery is credited to Peter Winter-Smith of NGSSoftware. |
| Vulnerable: |
L-Soft Listserv 14.4 L-Soft Listserv 14.3 |
| Not Vulnerable: |
L-Soft Listserv 14.5 |
Discussion
L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
Listserv is affected by multiple unspecified vulnerabilities. These issues may allow remote attackers to execute arbitrary code to gain access to an affected computer.
These issues affect versions 14.3 and 14.4 of Listserv. Prior versions that are installed with the web archive interface may also be affected.
Further details may be released in June 2006. This BID will be updated and divided into separate BIDs when more information is available.
Listserv is affected by multiple unspecified vulnerabilities. These issues may allow remote attackers to execute arbitrary code to gain access to an affected computer.
These issues affect versions 14.3 and 14.4 of Listserv. Prior versions that are installed with the web archive interface may also be affected.
Further details may be released in June 2006. This BID will be updated and divided into separate BIDs when more information is available.
Exploit / POC
L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
Solution:
Listserv version 14.5 is not affected by these issues. The updated versions may be found at the following locations:
http://www.lsoft.com/download/listserv.asp
http://www.lsoft.com/download/listservlite.asp
Solution:
Listserv version 14.5 is not affected by these issues. The updated versions may be found at the following locations:
http://www.lsoft.com/download/listserv.asp
http://www.lsoft.com/download/listservlite.asp
References
L-Soft Listserv 14.3 and 14.4 Multiple Unspecified Vulnerabilities
References:
References:
- Listserv Product Home Page (L-Soft)
- Critical Risk Vulnerability in L-Soft Listserv ("NGSSoftware Insight Security Research"
)