SMTP: SpamAssassin Injection
This signature detects attempts to exploit a known vulnerability against SpamAssassin. A successful attack can lead to arbitrary code execution.
Extended Description
SpamAssassin is prone to an arbitrary-command-execution vulnerability. This issue is due to an error in the application when processing a specially formatted input message when certain switches are set. An attacker can exploit this issue to execute arbitrary comannds on the vulnerable computer with the privileges of the affected application.
Affected Products
Mandriva corporate_server
References
BugTraq: 18290
CVE: CVE-2006-2447
URL: http://spamassassin.apache.org/advisories/cve-2006-2447.txt
Short Name
SMTP:SPAM-ASSN-INJ
Severity
Major
Recommended
False
Recommended Action
Drop
Category
SMTP
Keywords
CVE-2006-2447 Injection SpamAssassin bid:18290
Release Date
08/21/2006
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
Port
TCP/783
False Positive
Unknown
Vendors
Red_hat
Gentoo
Trustix
Rpath
Spamassassin
Mandriva
Debian
CVSS Score
5.1