CVE-2020-1931

Name
CVE-2020-1931
Description
A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious Configuration (.cf) files can be configured to run system commands similar to CVE-2018-11805. This issue is less stealthy and attempts to exploit the issue will throw warnings. Thanks to Damian Lukowski at credativ for reporting the issue ethically. With this bug unpatched, exploits can be injected in a number of scenarios though doing so remotely is difficult. In addition to upgrading to SA 3.4.4, we again recommend that users should only use update channels or 3rd party .cf files from trusted places.
NVD Severity
high
Other trackers
CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia
Mailing lists
oss-security, full-disclosure, bugtraq
Exploits
Exploit DB, Metasploit
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
Permissions Required https://bz.apache.org/SpamAssassin/show_bug.cgi?id=7784
DEBIAN https://www.debian.org/security/2020/dsa-4615
BUGTRAQ https://seclists.org/bugtraq/2020/Feb/1
UBUNTU https://usn.ubuntu.com/4265-2/
UBUNTU https://usn.ubuntu.com/4265-1/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VOVVKFP2G2AF5GHAB4WMHOEX76A3H6CE/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B7SY2LUSH2X3IUXN4EQQ5A6QVUFYIV3D/
MLIST https://lists.debian.org/debian-lts-announce/2020/02/msg00015.html
SUSE http://lists.opensuse.org/opensuse-security-announce/2020-04/msg00003.html

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:apache:spamassassin:*:*:*:*:*:*:*:* spamassassin >= None < 3.4.3

Vulnerable and fixed packages

Source package Branch Version Maintainer Status