SpamAssassin < 3.2.1 spamd Symlink Local DoS

low Nessus Network Monitor Plugin ID 4100

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote host is running SpamAssassin, an anti-spam software application that detects and blocks spam emails. This version of SpamAssassin is vulnerable to a flaw in that by creating a symbolic link, local attackers can cause the application to process a malformed file. Successful exploitation results in the application crashing and denying valid services to users.

Solution

Upgrade to version 3.2.1 or higher.

See Also

http://spamassassin.org

Plugin Details

Severity: Low

ID: 4100

Family: SMTP Clients

Published: 6/15/2007

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 1

Temporal Score: 0.7

Vector: CVSS2#AV:L/AC:H/Au:S/C:N/I:N/A:P

CVSS v3

Risk Factor: Low

Base Score: 2.5

Temporal Score: 2.2

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:apache:spamassassin

Reference Information

CVE: CVE-2007-2873

BID: 24481