CVE-2007-0451

Currently unrated

Key Information:

Vendor: Apache
Status: Spamassassin
Vendor: CVE Published:; 16 February 2007

Summary

Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."

References

http://spamassassin.apache.org/advisories/cve-2007-0451.txt

x_refsource_CONFIRM

http://secunia.com/advisories/24200

third-party-advisoryx_refsource_SECUNIA

https://issues.rpath.com/browse/RPL-1073

x_refsource_CONFIRM

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 16, 2007
Vulnerability Reserved
Jan 23, 2007