Lucene search
SAINT CorporationSAINT:41DBC7F692C221579B07A845DD000FEAHistoryJun 09, 2006 - 12:00 a.m.
SpamAssassin spamd vpopmail user vulnerability
2006-06-0900:00:00
SAINT Corporation
download.saintcorporation.com
27
0.947 High
EPSS
Percentile
99.3%
Added: 06/09/2006
CVE: CVE-2006-2447
BID: 18290
OSVDB: 26177
Background
SpamAssassin identifies spam e-mail using a variety of local and network based tests. **spamd** is a component of SpamAssassin which allows it to run as a network daemon.
Problem
When the vpopmail (-v) and paranoid (-P) options are used with **spamd**, the user name specified by the client is included in a shell command without sufficient checking for invalid characters. This allows arbitrary command execution by remote attackers.
Resolution
Upgrade to SpamAssassin 3.1.3 or higher.
References
<http://www.securityfocus.com/archive/1/436288>
Limitations
This exploit will only succeed when run from an address which is explicitly allowed by **spamd**.
Related
cve
cve
CVE-2006-2447
2006-06-06 21:06:00
nessus
nessus
RHEL 4 : spamassassin (RHSA-2006:0543)
2006-06-08 00:00:00
CentOS 4 : spamassassin (CESA-2006:0543)
2006-07-05 00:00:00
SpamAssassin spamd Crafted Message Arbitrary Command Execution
2006-06-08 00:00:00
saint
saint
SpamAssassin spamd vpopmail user vulnerability
2006-06-09 00:00:00
SpamAssassin spamd vpopmail user vulnerability
2006-06-09 00:00:00
SpamAssassin spamd vpopmail user vulnerability
2006-06-09 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200606-09 (Spamassassin)
2008-09-24 00:00:00
SLES9: Security update for SpamAssassin
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200606-09 (Spamassassin)
2008-09-24 00:00:00
exploitpack
exploitpack
SpamAssassin spamd 3.1.3 - Command Injection (Metasploit)
2006-06-06 00:00:00
nvd
nvd
CVE-2006-2447
2006-06-06 21:06:00
debiancve
debiancve
CVE-2006-2447
2006-06-06 21:06:00
redhat
redhat
(RHSA-2006:0543) spamassassin security update
2006-06-06 00:00:00
gentoo
gentoo
SpamAssassin: Execution of arbitrary code
2006-06-11 00:00:00
securityvulns
securityvulns
centos
centos
spamassassin security update
2006-06-06 21:40:09
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:13:09
prion
prion
Design/Logic Flaw
2006-06-06 21:06:00
cvelist
cvelist
CVE-2006-2447
2006-06-06 21:00:00
ubuntucve
ubuntucve
CVE-2006-2447
2006-06-06 00:00:00
seebug
seebug
SpamAssassin spamd Remote Command Execution
2014-07-01 00:00:00
SpamAssassin spamd <= 3.1.3 - Command Injection
2014-07-01 00:00:00
SpamAssassin spamd <= 3.1.3 Command Injection
2006-06-06 00:00:00
packetstorm
packetstorm
SpamAssassin spamd Remote Command Execution
2009-10-28 00:00:00
debian
debian
checkpoint_advisories
checkpoint_advisories
SpamAssassin Spamd Configurable Options Code Execution (CVE-2006-2447)
2009-12-01 00:00:00
metasploit
metasploit
SpamAssassin spamd Remote Command Execution
2008-07-19 15:40:30
exploitdb
exploitdb
SpamAssassin spamd 3.1.3 - Command Injection (Metasploit)
2006-06-06 00:00:00
SpamAssassin spamd - Remote Command Execution (Metasploit)
2010-04-30 00:00:00
fedora
fedora
[SECURITY] Fedora Core 5 Update: spamassassin-3.1.8-1.fc5
2007-02-15 19:48:41
[SECURITY] Fedora Core 5 Update: spamassassin-3.1.9-1.fc5.1
2007-06-12 21:36:03