rPath Security Advisory: 2006-0096-1
Products: rPath Linux 1
Exposure Level Classification:
Remote Root Deterministic Unauthorized Access
Previous versions of spamassassin have a remote unauthorized access
vulnerability only in a non-default and very uncommon configuration.
It affects only systems where spamd is used with vpopmail virtual
users, via the "-v" or "--vpopmail" switch, and when the "-P" or
"--paranoid" switch has been used. Both switches have to be enabled
for the vulnerability to exist.