Apache SpamAssassin before 3.1.8 allows remote attackers to cause a denial of service via long URLs in malformed HTML, which triggers massive memory usage.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Spamassassin | Apache | * | 3.1.7 (including) |
Spamassassin | Apache | 3.0.1 (including) | 3.0.1 (including) |
Spamassassin | Apache | 3.0.2 (including) | 3.0.2 (including) |
Spamassassin | Apache | 3.0.3 (including) | 3.0.3 (including) |
Spamassassin | Apache | 3.0.4 (including) | 3.0.4 (including) |
Spamassassin | Apache | 3.1.0 (including) | 3.1.0 (including) |
Spamassassin | Apache | 3.1.1 (including) | 3.1.1 (including) |
Spamassassin | Apache | 3.1.2 (including) | 3.1.2 (including) |