Test ID:	1.3.6.1.4.1.25623.1.0.51177
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2004:451
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2004:451. SpamAssassin provides a way to reduce unsolicited commercial email (SPAM) from incoming email. A denial of service bug has been found in SpamAssassin versions below 2.64. A malicious attacker could construct a message in such a way that would cause spamassassin to stop responding, potentially preventing the delivery or filtering of email. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0796 to this issue. Users of SpamAssassin should update to these updated packages which contain a backported patch and is not vulnerable to this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2004-451.html Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 10957 Common Vulnerability Exposure (CVE) ID: CVE-2004-0796 http://www.securityfocus.com/bid/10957 https://bugzilla.fedora.us/show_bug.cgi?id=2268 http://security.gentoo.org/glsa/glsa-200408-06.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:084 http://marc.info/?l=spamassassin-announce&m=109168121628767&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10413 XForce ISS Database: spamassassin-dos(16938) https://exchange.xforce.ibmcloud.com/vulnerabilities/16938
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.