o Jiransecurity released security update to address stack-based buffer overflow vulnerability in Spamsniper.
o Spamsniper contains a stack-based buffer overflow vulnerability caused by improper boundary checks when parsing MAIL FROM command. It leads remote attacker to execute arbitrary code via crafted packet.
□ Affected Products
||version 5.0.2 ~ 5.7.5
o Update software over 5.7.6 version or latest patch (revision 5500)
o KrCERT/CC Vulnerability Analysis Team Researcher Honggi Kim, Hyunsoo Gil, Jeesoo Jurn
□ 작성 : 침해사고분석단 취약점분석팀