MidnightBSD

Advisories for spamassassin

CVE-2003-1557 HIGH

Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." characters.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
spamassassin spamassassin 2.43
spamassassin spamassassin 2.42
spamassassin spamassassin 2.41
spamassassin spamassassin 2.40
CVE-2004-0796 MEDIUM

SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to cause a denial of service via certain malformed messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
spamassassin spamassassin 2.60
spamassassin spamassassin 2.55
spamassassin spamassassin 2.63
spamassassin spamassassin 2.43
spamassassin spamassassin 2.50
spamassassin spamassassin 2.42
spamassassin spamassassin 2.44
spamassassin spamassassin 2.41
spamassassin spamassassin 2.40