Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail sendmail 8.12.5 vulnerabilities and exploits
(subscribe to this query)
570
VMScore
CVE-2002-2423
Sendmail 8.12.0 up to and including 8.12.6 truncates log messages longer than 100 characters, which allows remote malicious users to prevent the IP address from being logged via a long IDENT response.
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.2
445
VMScore
CVE-2003-0688
The DNS map code in Sendmail 8.12.8 and previous versions, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote malicious users to cause a denial of service (process crash) via an invalid DNS response that causes S...
Redhat Sendmail 8.12.8-4
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.8
Sgi Irix 6.5.19
Redhat Sendmail 8.12.5-7
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.12.3
Sgi Irix 6.5.20
Sgi Irix 6.5.21
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.7
Freebsd Freebsd 4.7
Freebsd Freebsd 4.8
Compaq Tru64 5.0a
Freebsd Freebsd 5.0
Openbsd Openbsd 3.2
Compaq Tru64 5.1
Freebsd Freebsd 4.6
465
VMScore
CVE-2002-1165
Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows malicious users to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2)...
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.6
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
1 EDB exploit
668
VMScore
CVE-2002-2261
Sendmail 8.9.0 up to and including 8.12.6 allows remote malicious users to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.7
445
VMScore
CVE-2005-2070
The ClamAV Mail fILTER (clamav-milter) 0.84 up to and including 0.85d, when used in Sendmail using long timeouts, allows remote malicious users to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading.
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.10
Sendmail Sendmail 8.12.11
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.12.9
Sendmail Sendmail 8.12
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.6
445
VMScore
CVE-2006-1173
Sendmail prior to 8.13.7 allows remote malicious users to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering...
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.13.3
Sendmail Sendmail 8.13.4
Sendmail Sendmail 8.13.0
Sendmail Sendmail 8.13.1
Sendmail Sendmail 8.10
Sendmail Sendmail 8.11.4
169
VMScore
CVE-2014-3956
The sm_close_on_exec function in conf.c in sendmail prior to 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.
Freebsd Freebsd
Hp Hpux
Fedoraproject Fedora 20
Sendmail Sendmail 8.7.7
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.0
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.7.9
Sendmail Sendmail 8.8.8
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.14.7
Sendmail Sendmail 8.14.6
Sendmail Sendmail 8.14.5
Sendmail Sendmail 8.13.7
Sendmail Sendmail 8.13.6
Sendmail Sendmail 8.11.7
505
VMScore
CVE-2009-1490
Heap-based buffer overflow in Sendmail prior to 8.13.2 allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.
Sendmail Sendmail 5
Sendmail Sendmail 5.65
Sendmail Sendmail 2.6.1
Sendmail Sendmail 8.12
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.10.2
Sendmail Sendmail 2.6
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.10
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.10.0
Sendmail Sendmail 5.61
Sendmail Sendmail 3.0
Sendmail Sendmail 3.0.1
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.7.7
1 EDB exploit
668
VMScore
CVE-2009-4565
sendmail prior to 8.14.4 does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle malicious users to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate C...
Sendmail Sendmail 8.14.2
Sendmail Sendmail
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.7.7
Sendmail Sendmail 8.7.6
Sendmail Sendmail 8.13.4
Sendmail Sendmail 8.13.3
Sendmail Sendmail 8.12
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.10
Sendmail Sendmail 2.6
Sendmail Sendmail 5.61
Sendmail Sendmail 5.65
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.7.10
Sendmail Sendmail 8.6.7
Sendmail Sendmail 8.13.2
668
VMScore
CVE-2002-0906
Buffer overflow in Sendmail prior to 8.12.5, when configured to use a custom DNS map to query TXT records, allows remote malicious users to cause a denial of service and possibly execute arbitrary code via a malicious DNS server.
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »