GNU Mailman 'msearch/design' Cross Site Scripting Vulnerability

Bugtraq ID:	51263
Class:	Input Validation Error
CVE:	CVE-2011-5024
Remote:	Yes
Local:	No
Published:	Jan 04 2012 12:00AM
Updated:	Jan 04 2012 12:00AM
Credit:	Reported by the vendor.
Vulnerable:
Not Vulnerable:	GNU Mailman 2.0.13 + Red Hat Enterprise Linux AS 2.1 IA64 + Red Hat Enterprise Linux AS 2.1 + RedHat Enterprise Linux ES 2.1 IA64 + RedHat Enterprise Linux ES 2.1 + RedHat Enterprise Linux WS 2.1 IA64 + RedHat Enterprise Linux WS 2.1

GNU Mailman 'msearch/design' Cross Site Scripting Vulnerability

GNU Mailman is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input.

An attacker may leverage this issue to execute arbitrary HTML and script code in the browser of an unsuspecting user in the context of the affected site. This may let the attacker steal cookie-based authentication credentials and launch other attacks.

Versions prior to GNU Mailman 2.0.13 are vulnerable.

GNU Mailman 'msearch/design' Cross Site Scripting Vulnerability

Attackers can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

GNU Mailman 'msearch/design' Cross Site Scripting Vulnerability

Solution:
Updates are available. Please see the references for more information.

GNU Mailman 'msearch/design' Cross Site Scripting Vulnerability

References:

• Mailman - Homepage (GNU Mailman)
  
• XSS in Mailman/Htdig Integration (SiteWatch)
  
• XSS in Mailman/Htdig Integration Release Notes (Apache Software Foundation)