CVE-2005-1266

Currently unrated

Key Information:

Vendor: Apache
Status: Spamassassin
Vendor: CVE Published:; 15 June 2005

Summary

Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.

References

http://www.vuxml.org/freebsd/cc4ce06b-e01c-11d9-a8bd-000c...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/13978

vdb-entryx_refsource_BID

http://bugs.gentoo.org/show_bug.cgi?id=94722

x_refsource_MISC

EPSS Score

16% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 15, 2005
Vulnerability Reserved
Apr 25, 2005