Описание
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 3.2.2-0ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | released | 3.2.2-0ubuntu1 |
| hardy | released | 3.2.2-0ubuntu1 |
| intrepid | released | 3.2.2-0ubuntu1 |
| jaunty | released | 3.2.2-0ubuntu1 |
| karmic | released | 3.2.2-0ubuntu1 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
1.9 Low
CVSS2
Связанные уязвимости
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as ...
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.
ELSA-2007-0492: Moderate: spamassassin security update (MODERATE)
EPSS
1.9 Low
CVSS2