Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:106: spamassassin Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the spamassassin package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:106 (spamassassin).
A Denial of Service bug was discovered in SpamAssassin. A possible hacker could
construct a particular message that would cause SpamAssassin to consume CPU
resources. If a large number of these messages were sent, it could lead to a
DoS. SpamAssassin 3.0.4 was released to correct this vulnerability, as well as
other minor bug fixes, and is provided with this update.
For full details on the changes from previous versions of SpamAssassin to this
current version, please refer to the online documentation at http://
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:106
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.