Total
14 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-1999-0163 | 1 Eric Allman | 1 Sendmail | 2022-08-17 | 7.2 HIGH | N/A |
In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | |||||
CVE-1999-0204 | 1 Eric Allman | 1 Sendmail | 2022-08-17 | 10.0 HIGH | N/A |
Sendmail 8.6.9 allows remote attackers to execute root commands, using ident. | |||||
CVE-1999-0203 | 1 Eric Allman | 1 Sendmail | 2022-08-17 | 10.0 HIGH | N/A |
In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program. | |||||
CVE-1999-0206 | 1 Eric Allman | 1 Sendmail | 2022-08-17 | 10.0 HIGH | N/A |
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access. | |||||
CVE-1999-0205 | 1 Eric Allman | 1 Sendmail | 2022-08-17 | 5.0 MEDIUM | N/A |
Denial of service in Sendmail 8.6.11 and 8.6.12. | |||||
CVE-1999-0129 | 7 Bsdi, Eric Allman, Freebsd and 4 more | 9 Bsd Os, Sendmail, Freebsd and 6 more | 2022-08-16 | 4.6 MEDIUM | N/A |
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | |||||
CVE-1999-0095 | 1 Eric Allman | 1 Sendmail | 2019-06-11 | 10.0 HIGH | N/A |
The debug command in Sendmail is enabled, allowing attackers to execute commands as root. | |||||
CVE-1999-0145 | 1 Eric Allman | 1 Sendmail | 2019-06-11 | 7.2 HIGH | N/A |
Sendmail WIZ command enabled, allowing root access. | |||||
CVE-1999-0393 | 1 Eric Allman | 1 Sendmail | 2016-10-17 | 5.0 MEDIUM | N/A |
Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers. | |||||
CVE-2000-0319 | 1 Eric Allman | 1 Sendmail | 2008-09-10 | 5.0 MEDIUM | N/A |
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n. | |||||
CVE-1999-0976 | 1 Eric Allman | 1 Sendmail | 2008-09-09 | 2.1 LOW | N/A |
Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. | |||||
CVE-1999-0047 | 3 Bsdi, Caldera, Eric Allman | 3 Bsd Os, Openlinux, Sendmail | 2008-09-09 | 10.0 HIGH | N/A |
MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. | |||||
CVE-1999-0130 | 7 Bsdi, Caldera, Eric Allman and 4 more | 7 Bsd Os, Network Desktop, Sendmail and 4 more | 2008-09-09 | 7.2 HIGH | N/A |
Local users can start Sendmail in daemon mode and gain root privileges. | |||||
CVE-1999-0131 | 8 Bsdi, Digital, Eric Allman and 5 more | 9 Bsd Os, Osf 1, Sendmail and 6 more | 2008-09-09 | 7.2 HIGH | N/A |
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. |