Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2005-1266

Published: 15/06/2005 Updated: 13/02/2023
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Apache

Vulnerability Summary

Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote malicious users to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.

Vulnerable Product Search on Vulmon Subscribe to Product

apache spamassassin 3.0.3

apache spamassassin 3.0.1

apache spamassassin 3.0.2

Vendor Advisories

Red Hat: spamassassin security update
Synopsis spamassassin security update Type/Severity Security Advisory: Moderate Topic An updated spamassassin package that fixes a denial of service bug whenparsing malformed messages is now availableThis update has been rated as having moderate security impact by the RedHat Security Response Team ...
Debian Security Advisories: DSA-736-1 spamassassin -- remote denial of service
A vulnerability was recently found in the way that SpamAssassin parses certain email headers This vulnerability could cause SpamAssassin to consume a large number of CPU cycles when processing messages containing these headers, leading to a potential denial of service (DOS) attack The version of SpamAssassin in the old stable distribution (woody ...

References

NVD-CWE-Otherhttp://www.vuxml.org/freebsd/cc4ce06b-e01c-11d9-a8bd-000cf18bbe54.htmlhttp://security.gentoo.org/glsa/glsa-200506-17.xmlhttp://bugs.gentoo.org/show_bug.cgi?id=94722http://www.debian.org/security/2005/dsa-736http://www.mandriva.com/security/advisories?name=MDKSA-2005:106http://www.redhat.com/support/errata/RHSA-2005-498.htmlhttp://www.securityfocus.com/bid/13978https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10901http://mail-archives.apache.org/mod_mbox/spamassassin-announce/200506.mbox/%3c17072.35054.586017.822288%40proton.pathname.com%3ehttps://access.redhat.com/errata/RHSA-2005:498https://nvd.nist.govhttps://www.debian.org/security/./dsa-736
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook