Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail sendmail 8.9.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-0393
Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.
Eric Allman Sendmail 8.8
Eric Allman Sendmail 8.9.2
1 EDB exploit
2.1
CVSSv2
CVE-2002-1827
Sendmail 8.9.0 up to and including 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files.
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.12
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.9.3
2 EDB exploits
7.5
CVSSv2
CVE-2002-2261
Sendmail 8.9.0 up to and including 8.12.6 allows remote malicious users to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.7
5
CVSSv2
CVE-2005-2070
The ClamAV Mail fILTER (clamav-milter) 0.84 up to and including 0.85d, when used in Sendmail using long timeouts, allows remote malicious users to cause a denial of service by keeping an open connection, which prevents ClamAV from reloading.
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.10
Sendmail Sendmail 8.12.11
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.12.9
Sendmail Sendmail 8.12
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.6
5
CVSSv2
CVE-2006-1173
Sendmail prior to 8.13.7 allows remote malicious users to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering...
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.13.3
Sendmail Sendmail 8.13.4
Sendmail Sendmail 8.13.0
Sendmail Sendmail 8.13.1
Sendmail Sendmail 8.10
Sendmail Sendmail 8.11.4
1.9
CVSSv2
CVE-2014-3956
The sm_close_on_exec function in conf.c in sendmail prior to 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.
Freebsd Freebsd
Hp Hpux
Fedoraproject Fedora 20
Sendmail Sendmail 8.7.7
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.0
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.7.9
Sendmail Sendmail 8.8.8
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.14.7
Sendmail Sendmail 8.14.6
Sendmail Sendmail 8.14.5
Sendmail Sendmail 8.13.7
Sendmail Sendmail 8.13.6
Sendmail Sendmail 8.11.7
5
CVSSv2
CVE-2009-1490
Heap-based buffer overflow in Sendmail prior to 8.13.2 allows remote malicious users to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.
Sendmail Sendmail 5
Sendmail Sendmail 5.65
Sendmail Sendmail 2.6.1
Sendmail Sendmail 8.12
Sendmail Sendmail 8.11.7
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.10.2
Sendmail Sendmail 2.6
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.10
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.0
Sendmail Sendmail 8.10.0
Sendmail Sendmail 5.61
Sendmail Sendmail 3.0
Sendmail Sendmail 3.0.1
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.7.7
1 EDB exploit
7.5
CVSSv2
CVE-2009-4565
sendmail prior to 8.14.4 does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle malicious users to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate C...
Sendmail Sendmail 8.14.2
Sendmail Sendmail
Sendmail Sendmail 8.7.8
Sendmail Sendmail 8.7.7
Sendmail Sendmail 8.7.6
Sendmail Sendmail 8.13.4
Sendmail Sendmail 8.13.3
Sendmail Sendmail 8.12
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.10
Sendmail Sendmail 2.6
Sendmail Sendmail 5.61
Sendmail Sendmail 5.65
Sendmail Sendmail 8.9.3
Sendmail Sendmail 8.9.2
Sendmail Sendmail 8.7.10
Sendmail Sendmail 8.6.7
Sendmail Sendmail 8.13.2
7.5
CVSSv2
CVE-2003-0681
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
Sendmail Advanced Message Server 1.2
Sendmail Advanced Message Server 1.3
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.5
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.8.8
Sendmail Sendmail 8.9.0
Sendmail Sendmail Switch 2.1.1
Sendmail Sendmail Switch 2.1.2
Sendmail Sendmail Switch 2.2.3
Sendmail Sendmail Switch 2.2.4
Sendmail Sendmail 2.6.2
Sendmail Sendmail 3.0
Sendmail Sendmail 3.0.1
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.12.2
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12
1 EDB exploit
10
CVSSv2
CVE-2003-0161
The prescan() function in the address parser (parseaddr.c) in Sendmail prior to 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" co...
Sendmail Sendmail 2.6
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.6
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.7
Sendmail Sendmail 8.12.8
Sendmail Sendmail 8.9.1
Sendmail Sendmail 8.9.2
Sendmail Sendmail Switch 2.2
Sendmail Sendmail Switch 2.2.1
Sendmail Sendmail Switch 3.0.2
Sendmail Sendmail Switch 3.0.3
Sendmail Sendmail 3.0
Sendmail Sendmail 3.0.1
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12
Sendmail Sendmail Switch 2.1.1
2 EDB exploits
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »