Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/06/2007 Updated: 11/10/2017

CVSS v2 Base Score: 1.9 | Impact Score: 2.9 | Exploitability Score: 3.4

VMScore: 169

Vector: AV:L/AC:M/Au:N/C:N/I:N/A:P

SpamAssassin 3.1.x, 3.2.0, and 3.2.1 prior to 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.

Vulnerable Product	Search on Vulmon	Subscribe to Product
spamassassin spamassassin 3.1.4
spamassassin spamassassin 3.1.5
spamassassin spamassassin 3.1.2
spamassassin spamassassin 3.1.3
spamassassin spamassassin 3.2.0
spamassassin spamassassin 3.2.1
spamassassin spamassassin 3.1.0
spamassassin spamassassin 3.1.1
spamassassin spamassassin 3.1.8
spamassassin spamassassin 3.1.9
spamassassin spamassassin 3.1.6
spamassassin spamassassin 3.1.7

NVD-CWE-Other http://spamassassin.apache.org/advisories/cve-2007-2873.txt https://issues.rpath.com/browse/RPL-1450 http://www.mandriva.com/security/advisories?name=MDKSA-2007:125 http://www.redhat.com/support/errata/RHSA-2007-0492.html http://www.securityfocus.com/bid/24481 http://www.securitytracker.com/id?1018242 http://osvdb.org/37234 http://www.vupen.com/english/advisories/2007/2172 https://exchange.xforce.ibmcloud.com/vulnerabilities/34864 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10354 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2873

Vulnerability Summary

References

Vulmon Search

About

Products

Connect