Apache SpamAssassin 3.0.1, 3.0.2, and 3.0.3 allows remote attackers to cause a denial of service (CPU consumption and slowdown) via a message with a long Content-Type header without any boundaries.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Spamassassin | Apache | 3.0.1 (including) | 3.0.1 (including) |
Spamassassin | Apache | 3.0.2 (including) | 3.0.2 (including) |
Spamassassin | Apache | 3.0.3 (including) | 3.0.3 (including) |
Red Hat Enterprise Linux 4 | RedHat | spamassassin-0:3.0.4-1.el4 | * |