A missing input sanitization in spamass-milter, a milter
used to filter mail through spamassassin, was discovered.
This allows a remote attacker to inject and execute arbitrary shell commands.
For the stable distribution (lenny), this problem has been fixed in
version 0.3.1-8+lenny1.
For the testing (squeeze) and unstable (sid) distribution this problem
has been fixed in version 0.3.1-9.
We recommend that you upgrade your spamass-milter package.
CPE | Name | Operator | Version |
---|---|---|---|
spamass-milter | eq | 0.3.1-8 | |
spamass-milter | eq | 0.3.1-8+lenny1 |