• info
• discussion
• exploit
• solution
• references

Mailman 'list templates' and 'list info' Multiple HTML Injection Vulnerabilities

Solution:
The vendor released Mailman 2.1.10b1 to address these issues. Please see the references for more information.


Apple Mac OS X Server 10.5.8

• Apple SecUpdSrvr2010-002Leo.dmg
  http://www.apple.com/support/downloads/

GNU Mailman 2.1.9

• GNU mailman-2.1.10b1.tgz
  http://downloads.sourceforge.net/mailman/mailman-2.1.10b1.tgz?modtime= 1196802223&big_mirror=0