SpamAssassin Local Symlink Attack And Denial of Service Vulnerability

TITLE: SpamAssassin Local Symlink Attack And Denial of Service Vulnerability
CLASS: Design Error
CVE: CVE-2007-2873

REMOTE: No
LOCAL: Yes
PUBLISHED: Jun 14 2007 12:00AM
UPDATE: Jun 15 2007 04:59AM
CREDIT: Martin F. Krafft of Debian reported this vulnerability.
VULNERABLE:

SpamAssassin SpamAssassin 3.2
SpamAssassin SpamAssassin 3.1.9
SpamAssassin SpamAssassin 3.1.8
SpamAssassin SpamAssassin 3.1.7
SpamAssassin SpamAssassin 3.1.6
SpamAssassin SpamAssassin 3.1.5
SpamAssassin SpamAssassin 3.1.4
SpamAssassin SpamAssassin 3.1.3
SpamAssassin SpamAssassin 3.1.2
SpamAssassin SpamAssassin 3.1.1
SpamAssassin SpamAssassin 3.1
MandrakeSoft Linux Mandrake 2007.1 x86_64
MandrakeSoft Linux Mandrake 2007.1
MandrakeSoft Linux Mandrake 2007.0 x86_64
MandrakeSoft Linux Mandrake 2007.0
MandrakeSoft Corporate Server 4.0 x86_64
MandrakeSoft Corporate Server 4.0
NOT VULNERABLE:
SpamAssassin SpamAssassin 3.2.1

Vai alla pagina originale su Security Focus

Discussion

SpamAssassin is prone to a remote denial-of-service vulnerability because the application creates files in an insecure manner.

An attacker can exploit this issue to cause a denial-of-service condition.

Versions prior to SpamAssassin 3.2.1 are vulnerable to this issue.

Exploit

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

Solution

Solution:
The vendor has released version 3.2.1 to address this issue; please see the reference section for details.


SpamAssassin SpamAssassin 3.1


SpamAssassin SpamAssassin 3.1.1

SpamAssassin SpamAssassin 3.1.2

SpamAssassin SpamAssassin 3.1.3

SpamAssassin SpamAssassin 3.1.4

SpamAssassin SpamAssassin 3.1.5

SpamAssassin SpamAssassin 3.1.6

SpamAssassin SpamAssassin 3.1.7

SpamAssassin SpamAssassin 3.1.8

References

References:

PhpLog

BNLug Benevento Linux Users Group