Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Spamassassin
(Apache)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 13 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2007-02-16 | CVE-2007-0451 | Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage." | Spamassassin | N/A | ||
| 2006-06-06 | CVE-2006-2447 | SpamAssassin before 3.1.3, when running with vpopmail and the paranoid (-P) switch, allows remote attackers to execute arbitrary commands via a crafted message that is not properly handled when invoking spamd with the virtual pop username. | Spamassassin | N/A | ||
| 2005-11-20 | CVE-2005-3351 | SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl. | Spamassassin | N/A |