Lucene search

Spamassassin Security Vulnerabilities

cve

CVE-2003-1557

Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "."...

8.2AI Score

0.074EPSS

2008-04-04 01:00 AM

cve

CVE-2007-2873

SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by...

6.1AI Score

0.0004EPSS

2007-06-11 11:30 PM

cve

CVE-2004-0796

SpamAssassin 2.5x, and 2.6x before 2.64, allows remote attackers to cause a denial of service via certain malformed...

6.3AI Score

0.035EPSS

2004-10-20 04:00 AM