CVE-2003-1557

Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode "-B", allows remote attackers to execute arbitrary code via email containing headers with leading "." characters...

CVE-2003-1557

CVE-2003-1557 affects SpamAssassin spamc (versions 2.40–2.43). An off-by-one buffer overflow in BSMTP mode (-B) allows remote attackers to trigger arbitrary code execution via email headers starting with a leading "." character. Multiple connected sources (Red Hat, Debian, CVE listings, OSV, NVD)...

CVE-2003-1557

Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode "-B", allows remote attackers to execute arbitrary code via email containing headers with leading "." characters...

Security fix for the ALT Linux 6 package fetchmail version 6.3.8-alt1

April 7, 2007 Michael Shigorin 6.3.8-alt1 - 6.3.8 + APOP was strengthened to make the CVE-2007-1558 attack harder + crash when opening the BSMTP output file failed was fixed + other fixes and improvements...

DEBIAN-CVE-2003-1557

Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode "-B", allows remote attackers to execute arbitrary code via email containing headers with leading "." characters...

Spamassassin buffer overflow

Off-by-one buffer overflow in BSMTP -B...

SpamAssassin / spamc+BSMTP remote buffer overflow

Well, I was going to wait until 2.50 release, but it seems to be taking and this likely affects only few installations. Besides, it's been in their public bugzilla for over a month. So: Attacker may be able to execute arbitrary code by sending a specially crafted e-mail to a system using...