CVE Vulnerabilities

CVE-2005-1266

Published: Jun 15, 2005 | Modified: Feb 13, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.

Affected Software

Name Vendor Start Version End Version
Spamassassin Apache 3.0.1 (including) 3.0.1 (including)
Spamassassin Apache 3.0.2 (including) 3.0.2 (including)
Spamassassin Apache 3.0.3 (including) 3.0.3 (including)
Red Hat Enterprise Linux 4 RedHat spamassassin-0:3.0.4-1.el4 *

References