CVE-2007-0451 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-0451
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-0451

Description: Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers "massive memory usage."

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/32536 SUSE http://www.novell.com/linux/security/advisories/2007_6_sr.html ST 1017666 SAID Secunia Advisory: SA24256 Secunia Advisory: SA24250 Secunia Advisory: SA24200 Secunia Advisory: SA24197 Secunia Advisory: SA24265 Secunia Advisory: SA24307 Secunia Advisory: SA24889 REDHAT http://rhn.redhat.com/errata/RHSA-2007-0074.html http://www.redhat.com/support/errata/RHSA-2007-0075.html OSVDB 33207 MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:049 GENTOO http://security.gentoo.org/glsa/glsa-200703-02.xml FEDORA http://fedoranews.org/cms/node/2659 http://fedoranews.org/cms/node/2657 CONFIRM http://svn.apache.org/repos/asf/spamassassin/branches/3.1/build/announcements/3.1.8.txt http://spamassassin.apache.org/advisories/cve-2007-0451.txt BID 22584

Return to the previous page.