Computer Security
[EN] securityvulns.ru no-pyccku


Spamassasin local DoS
Published:14.06.2007
Source:
SecurityVulns ID:7816
Type:local
Threat Level:
4/10
Description:It's possible to overwrite arbitrary file.
CVE:CVE-2007-2873 (SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service (corrupt arbitrary files) via a symlink attack on a file that is used by spamd.)
Original documentdocumentRPATH, [Full-disclosure] rPSA-2007-0119-1 spamassassin (14.06.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod