The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Information
Published : 2014-06-04 04:19
Updated : 2017-12-28 18:29
NVD link : CVE-2014-3956
Mitre link : CVE-2014-3956
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
sendmail
- sendmail
freebsd
- freebsd
fedoraproject
- fedora
hp
- hpux