Main Menu

Login



Support Virus.Org

Help support Virus.Org by donating.
Donating allows us to keep this site free and pay the running costs of all our services.
Full-Disclosure Mailing List Compromised PDF Print E-mail
Written by Editor   
Wednesday, 09 February 2005 20:11
It seems that on the 2nd January 2005 the Full-Disclosure mailing list was compromised due to vulnerability within the Mailman mailing list software used to host the list. The compromise appears to have allowed the theft of the Mailman configuration database, and as a result subscriber accounts have been compromised. The compromise was performed using a remote directory traversal exploit for a previously unpublished vulnerability in Mailman 2.1.5.

All list members are advised to change their password immediately. List maintainers think that there are no further signs of intrusion although investigations continue.

You can find out more about the compromise in the posting made to the list here.

Add this page to your favorite Social Bookmarking websites
Digg! Reddit! Del.icio.us! Google! Live! Facebook! Technorati! StumbleUpon! Yahoo!
Last Updated ( Thursday, 14 September 2006 23:18 )