5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.947 High
EPSS
Percentile
99.3%
This update fixes the following security problem in SpamAssassin :
At the same time we upgraded SpamAssassin to version 3.1.3, bringing lots of bug fixes and new rules.
Please make sure you verify that it still works with your configuration.
Also included is now ‘sa-update’, a rule update script. For this script to work make sure that the perl-IO-ZLib and perl-libwww-perl packages are installed.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update spamassassin-1904.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(27449);
script_version("1.15");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2006-2447");
script_name(english:"openSUSE 10 Security Update : spamassassin (spamassassin-1904)");
script_summary(english:"Check for the spamassassin-1904 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"This update fixes the following security problem in SpamAssassin :
- CVE-2006-2447: SpamAssassin when running with vpopmail
and the paranoid (-P) switch, allows remote attackers to
execute arbitrary commands via a crafted message that is
not properly handled when invoking spamd with the
virtual pop username.
At the same time we upgraded SpamAssassin to version 3.1.3, bringing
lots of bug fixes and new rules.
Please make sure you verify that it still works with your
configuration.
Also included is now 'sa-update', a rule update script. For this
script to work make sure that the perl-IO-ZLib and perl-libwww-perl
packages are installed."
);
script_set_attribute(
attribute:"solution",
value:"Update the affected spamassassin packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"metasploit_name", value:'SpamAssassin spamd Remote Command Execution');
script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:perl-spamassassin");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:spamassassin");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.1");
script_set_attribute(attribute:"patch_publication_date", value:"2006/07/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2007/10/17");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE10.1", reference:"perl-spamassassin-3.1.3-3.2") ) flag++;
if ( rpm_check(release:"SUSE10.1", reference:"spamassassin-3.1.3-3.2") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "spamassassin");
}
Vendor | Product | Version | CPE |
---|---|---|---|
novell | opensuse | perl-spamassassin | p-cpe:/a:novell:opensuse:perl-spamassassin |
novell | opensuse | spamassassin | p-cpe:/a:novell:opensuse:spamassassin |
novell | opensuse | 10.1 | cpe:/o:novell:opensuse:10.1 |