Sympa Multiple Security Bypass Vulnerabilities
Release Date : 2012-05-14
Criticality level : Moderately critical
Impact : Security Bypass
Where : From remote
Solution Status : Vendor Patch
Software: Sympa 6.x
Multiple vulnerabilities have been reported in Sympa, which can be exploited by malicious people to bypass certain security restrictions.
The vulnerabilities are caused due to the application allowing access to archive functions without checking credentials. This can be exploited to create, download, and delete an archive.
The vulnerabilities are reported in versions prior to 6.1.11.
Update to version 6.1.11.