Apache SpamAssassin CVE-2018-11780 Remote Code Execution Vulnerability

Bugtraq ID: 105373
Class: Input Validation Error
CVE: CVE-2018-11780
Remote: Yes
Local: No
Published: Sep 17 2018 12:00AM
Updated: Sep 17 2018 12:00AM
Credit: cPanel Security Team
Vulnerable: SpamAssassin SpamAssassin 3.3.2
SpamAssassin SpamAssassin 3.2.1
SpamAssassin SpamAssassin 3.2
SpamAssassin SpamAssassin 3.1.9
SpamAssassin SpamAssassin 3.1.8
SpamAssassin SpamAssassin 3.1.7
SpamAssassin SpamAssassin 3.1.6
SpamAssassin SpamAssassin 3.1.5
SpamAssassin SpamAssassin 3.1.4
SpamAssassin SpamAssassin 3.1.3
SpamAssassin SpamAssassin 3.1.2
SpamAssassin SpamAssassin 3.1.1
SpamAssassin SpamAssassin 3.1
SpamAssassin SpamAssassin 3.0.6
SpamAssassin SpamAssassin 3.0.5
SpamAssassin SpamAssassin 3.0.4
SpamAssassin SpamAssassin 3.0.3
+ Debian Linux 3.1 sparc
+ Debian Linux 3.1 s/390
+ Debian Linux 3.1 ppc
+ Debian Linux 3.1 mipsel
+ Debian Linux 3.1 mips
+ Debian Linux 3.1 m68k
+ Debian Linux 3.1 ia-64
+ Debian Linux 3.1 ia-32
+ Debian Linux 3.1 hppa
+ Debian Linux 3.1 arm
+ Debian Linux 3.1 amd64
+ Debian Linux 3.1 alpha
+ Debian Linux 3.1
SpamAssassin SpamAssassin 3.0.2
SpamAssassin SpamAssassin 3.0.1
SpamAssassin SpamAssassin 3.0
SpamAssassin SpamAssassin 2.64
SpamAssassin SpamAssassin 2.63
SpamAssassin SpamAssassin 2.60
SpamAssassin SpamAssassin 2.55
SpamAssassin SpamAssassin 2.50 0
SpamAssassin SpamAssassin 2.44
SpamAssassin SpamAssassin 2.43 0
+ Gentoo Linux 1.4 _rc2
+ Gentoo Linux 1.4 _rc1
SpamAssassin SpamAssassin 2.42 0
SpamAssassin SpamAssassin 2.41 0
SpamAssassin SpamAssassin 2.40
Not Vulnerable: SpamAssassin SpamAssassin 3.4.2


 

Privacy Statement
Copyright 2010, SecurityFocus