← CVECheck
HomeVulnerabilities

CVE-2003-1367 — HIGH severity vulnerability (The which_access variable for Majordomo 2.0 through 1.94.4,)

The which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.

CVE IDCVE-2003-1367
SeverityHIGH
CVSS score7.8
CVSS vectorAV:N/AC:L/Au:N/C:C/I:N/A:N
CWECWE-16
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionThe which_access variable for Majordomo 2.0 through 1.94.4, and possibly earlier versions, is set to "open" by default, which allows remote attackers to identify the email addresses of members of mailing lists via a "which" command.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →