Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3351

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-3351
Last Modified 07 Mar 2011 09:26:23
Published 20 Nov 2005 04:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3351

Summary

SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl.

Vulnerable Systems

Application

  • Apache Spamassassin 3.0.4


References

MLIST - [spamassassin-devel] 20051101 [Bug 4570] Mail with lots of To addresses in header triggers Bus error in Perl [CVE-2005-3351]

FEDORA - FEDORA-2005-1065

VUPEN - ADV-2005-2364

MISC - http://issues.apache.org/SpamAssassin/show_bug.cgi?id=4570

XF - spamassassin-message-recipients-dos(23048)

BID - 15373

REDHAT - RHSA-2006:0129

SUSE - SUSE-SR:2005:027

MANDRAKE - MDKSA-2005:221

SECUNIA - 19158

SECUNIA - 17877

SECUNIA - 17666

SECUNIA - 17626

SECUNIA - 17518

SECUNIA - 17386

OSVDB - 11581


Last Updated: 27 May 2016 10:40:54