| Max CVSS | 5.1 | Min CVSS | 1.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2006-2447 | 5.1 |
SpamAssassin before 3.1.3, when running with vpopmail and the paranoid (-P) switch, allows remote attackers to execute arbitrary commands via a crafted message that is not properly handled when invoking spamd with the virtual pop username.
|
18-10-2018 - 16:40 | 06-06-2006 - 21:06 | |
| CVE-2007-2873 | 1.9 |
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is use
|
11-10-2017 - 01:32 | 11-06-2007 - 23:30 | |
| CVE-2007-0451 | 4.3 |
Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage." Upgrade to SpamAssassin version 3.1.8
|
11-10-2017 - 01:31 | 16-02-2007 - 19:28 | |
| CVE-2005-3351 | 5.0 |
SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl.
|
11-10-2017 - 01:30 | 20-11-2005 - 21:03 |