SB2018091602 - Multiple vulnerabilities in Apache SpamAssassin

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2018091602

SB2018091602 - Multiple vulnerabilities in Apache SpamAssassin

Published: September 16, 2018

Security Bulletin ID SB2018091602
Severity
High
Patch available
YES
Number of vulnerabilities 2
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 50% Low 50%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.


1) Improper input validation (CVE-ID: CVE-2018-11780)

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a remote code execution bug in the PDFInfo plug-in when handling malicious input. A remote unauthenticated attacker can trick the victim into opening a specially crafted email message and execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


2) Code injection (CVE-ID: CVE-2018-11781)

The vulnerability allows a local attacker to execute arbitrary code on the target system.

The vulnerability exists due to a code injection condition in the meta rule syntax that exists when rules are processed by the affected software. A local attacker can supply specially crafted data and execute arbitrary code with elevated privileges.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.


Remediation

Install update from vendor's website.

References