Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail vulnerabilities and exploits
(subscribe to this query)
641
VMScore
CVE-1999-0145
Sendmail WIZ command enabled, allowing root access.
Eric Allman Sendmail
641
VMScore
CVE-1999-1142
SunOS 4.1.2 and previous versions allows local users to gain privileges via "LD_*" environmental variables to certain dynamically linked setuid or setgid programs such as (1) login, (2) su, or (3) sendmail, that change the real and effective user ids to the same user.
Sun Sunos
605
VMScore
CVE-2011-0739
The deliver function in the sendmail delivery agent (lib/mail/network/delivery_methods/sendmail.rb) in Ruby Mail gem 2.2.14 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in an e-mail address.
Mikel Lindsaar Mail 2.2.12
Mikel Lindsaar Mail 2.2.11
Mikel Lindsaar Mail 2.2.5.2
Mikel Lindsaar Mail 2.2.5.1
Mikel Lindsaar Mail 2.1.5.2
Mikel Lindsaar Mail 2.1.5.1
Mikel Lindsaar Mail 2.2.10
Mikel Lindsaar Mail 2.2.9.1
Mikel Lindsaar Mail 2.2.5
Mikel Lindsaar Mail 2.2.4
Mikel Lindsaar Mail 2.2.3
Mikel Lindsaar Mail 2.1.5
Mikel Lindsaar Mail 2.1.3
Mikel Lindsaar Mail 1.5.3
Mikel Lindsaar Mail 1.5.2
Mikel Lindsaar Mail 1.3.5
Mikel Lindsaar Mail 1.3.4
Mikel Lindsaar Mail 1.2.7
Mikel Lindsaar Mail 1.2.6
Mikel Lindsaar Mail 1.6.0
Mikel Lindsaar Mail 1.5.4
Mikel Lindsaar Mail 1.4.2
605
VMScore
CVE-2007-3215
PHPMailer 1.7, when configured to use sendmail, allows remote malicious users to execute arbitrary shell commands via shell metacharacters in the SendmailSend function in class.phpmailer.php.
Phpmailer Phpmailer 1.7.2
Phpmailer Phpmailer 1.7
Phpmailer Phpmailer 1.7.1
Phpmailer Phpmailer 1.7.3
Phpmailer Phpmailer 1.73
578
VMScore
CVE-2020-12847
Pydio Cells 2.0.4 web application offers an administrative console named “Cells Console” that is available to users with an administrator role. This console provides an administrator user with the possibility of changing several settings, including the application&rsq...
Pydio Cells 2.0.4
578
VMScore
CVE-2019-9059
An issue exists in CMS Made Simple 2.2.8. It is possible, with an administrator account, to achieve command injection by modifying the path of the e-mail executable in Mail Settings, setting "sendmail" in the "Mailer" option, and launching the "Forgot you...
Cmsmadesimple Cms Made Simple
578
VMScore
CVE-2006-0845
Leif M. Wright's Blog 3.5 allows remote authenticated users with administrative privileges to execute arbitrary programs, including shell commands, by configuring the sendmail path to a malicious pathname.
Leif M. Wright Web Blog 3.5
570
VMScore
CVE-2002-2423
Sendmail 8.12.0 up to and including 8.12.6 truncates log messages longer than 100 characters, which allows remote malicious users to prevent the IP address from being logged via a long IDENT response.
Sendmail Sendmail 8.12.1
Sendmail Sendmail 8.12.3
Sendmail Sendmail 8.12.4
Sendmail Sendmail 8.12.5
Sendmail Sendmail 8.12.6
Sendmail Sendmail 8.12.0
Sendmail Sendmail 8.12.2
570
VMScore
CVE-1999-0418
Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection.
552
VMScore
CVE-1999-1468
rdist in various UNIX systems uses popen to execute sendmail, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable.
Next Next 2.0
Sgi Irix 3.3.3
Next Next 2.1
Sgi Irix 3.3
Sgi Irix 3.3.1
Sgi Irix 3.3.2
Sgi Irix 4.0
Cray Unicos 6.0e
Sun Sunos 4.1.1
Cray Unicos 6.1
Sun Sunos 4.0.3
Sun Sunos 4.0.3c
Sun Sunos 4.1
Cray Unicos 6.0
Sun Sunos 4.1psr A
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »