Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

sendmail sendmail 5.59 vulnerabilities and exploits

(subscribe to this query)
7.2
CVSSv2
CVE-1999-1580
SunOS sendmail 5.59 up to and including 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
Sendmail Sendmail 5.59Sendmail Sendmail 5.65Sendmail Sendmail 5.61Sun Sunos 4.1.3cSun Sunos 4.1.4Sun Sunos 4.1.1Sun Sunos 4.1.2Sun Sunos 4.1.3Sun Sunos 4.1.3u1Sun Sunos 4.1.4jl
5
CVSSv2
CVE-2009-1490
Heap-based buffer overflow in Sendmail prior to 8.13.2 allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.
Sendmail Sendmail 5Sendmail Sendmail 5.65Sendmail Sendmail 2.6.1Sendmail Sendmail 8.12Sendmail Sendmail 8.11.7Sendmail Sendmail 8.11.0Sendmail Sendmail 8.10.2Sendmail Sendmail 2.6Sendmail Sendmail 8.12.7Sendmail Sendmail 8.12.8Sendmail Sendmail 8.12.1Sendmail Sendmail 8.12.10Sendmail Sendmail 8.9.1Sendmail Sendmail 8.9.0Sendmail Sendmail 8.10.0Sendmail Sendmail 5.61Sendmail Sendmail 3.0Sendmail Sendmail 3.0.1Sendmail Sendmail 8.11.1Sendmail Sendmail 8.11.2Sendmail Sendmail 8.7.8Sendmail Sendmail 8.7.7
7.5
CVSSv2
CVE-2009-4565
sendmail prior to 8.14.4 does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle malicious users to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate C...
Sendmail Sendmail 8.14.2Sendmail SendmailSendmail Sendmail 8.7.8Sendmail Sendmail 8.7.7Sendmail Sendmail 8.7.6Sendmail Sendmail 8.13.4Sendmail Sendmail 8.13.3Sendmail Sendmail 8.12Sendmail Sendmail 8.12.4Sendmail Sendmail 8.12.3Sendmail Sendmail 8.12.2Sendmail Sendmail 8.11.4Sendmail Sendmail 8.11.3Sendmail Sendmail 8.10Sendmail Sendmail 2.6Sendmail Sendmail 5.61Sendmail Sendmail 5.65Sendmail Sendmail 8.9.3Sendmail Sendmail 8.9.2Sendmail Sendmail 8.7.10Sendmail Sendmail 8.6.7Sendmail Sendmail 8.13.2
5
CVSSv2
CVE-2000-0319
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote malicious user to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
Eric Allman Sendmail 8.7.1Eric Allman Sendmail 8.7.6Eric Allman Sendmail 8.7.5Eric Allman Sendmail 8.7.4Eric Allman Sendmail 8.8.xEric Allman Sendmail 8.8.2Eric Allman Sendmail 8.9.1Eric Allman Sendmail 8.8.1Eric Allman Sendmail 8.7.2Eric Allman Sendmail 8.9.3Eric Allman Sendmail 8.6.xEric Allman Sendmail 8.7.3Eric Allman Sendmail 5.58Eric Allman Sendmail 8.8.3Eric Allman Sendmail 8.8.4Eric Allman Sendmail 5.59Eric Allman Sendmail 8.8Eric Allman Sendmail 8.7.xEric Allman Sendmail 8.8.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgeryCVE-2024-34351CVE-2024-1076CVE-2024-25522CVE-2024-34547CVE-2024-4644unauthorizedremoteCVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook