Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-1999-0098
Buffer overflow in SMTP HELO command in Sendmail allows a remote malicious user to hide activities.
Apple Appleshare -
Pmail Mercury Mail Server -
Seattlelab Slmail 2.6
NA
CVE-2020-36772
CloudLinux CageFS 7.0.8-2 or below insufficiently restricts file paths supplied to the sendmail proxy command. This allows local users to read and write arbitrary files of certain file formats outside the CageFS environment.
Cloudlinux Cagefs
NA
CVE-2023-38193
An issue exists in SuperWebMailer 9.00.0.01710. It allows Remote Code Execution via a crafted sendmail command line.
Superwebmailer Superwebmailer 9.00.0.01710
7.5
CVSSv2
CVE-1999-1506
Vulnerability in SMI Sendmail 4.0 and previous versions, on SunOS up to 4.0.3, allows remote malicious users to access user bin.
Sun Sunos 4.0.3
Sun Sunos 4.0.3c
Sun Sunos 4.0
Sun Sunos 4.0.2
Sun Sunos 3.5
Sun Sunos 4.0.1
3.2
CVSSv2
CVE-2006-1014
Argument injection vulnerability in certain PHP 4.x and 5.x applications, when used with sendmail and when accepting remote input for the additional_parameters argument to the mb_send_mail function, allows context-dependent malicious users to read and create arbitrary files by pr...
Php Php 4.2
Php Php 4.3.11
Php Php 4.3.3
Php Php 4.4.0
Php Php 4.4.1
Php Php 5.0.0
Php Php 5.0.1
Php Php 5.0
Php Php 5.1.0
Php Php 4.0.0
Php Php 4.3.6
Php Php 4.3.7
Php Php 5.0.4
Php Php 5.0.5
Php Php 4.3.4
Php Php 4.3.5
Php Php 5.0.2
Php Php 5.0.3
Php Php 4.3.10
Php Php 4.3.8
Php Php 4.3.9
1 EDB exploit
9
CVSSv2
CVE-2017-7692
SquirrelMail 1.4.22 (and other versions prior to 20170427_0200-SVN) allows post-authentication remote code execution via a sendmail.cf file that is mishandled in a popen call. It's possible to exploit this vulnerability to execute arbitrary shell commands on the remote serve...
Squirrelmail Squirrelmail 1.4.22
1 EDB exploit
10
CVSSv2
CVE-2000-0348
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and previous versions allows an malicious user to gain root privileges.
Sco Unixware
7.5
CVSSv2
CVE-2005-2943
Stack-based buffer overflow in sendmail in XMail prior to 1.22 allows remote malicious users to execute arbitrary code via a long -t command line option.
Davide Libenzi Xmail 1.16
Davide Libenzi Xmail 1.17
Davide Libenzi Xmail 1.4
Davide Libenzi Xmail 1.5
Davide Libenzi Xmail 1.11
Davide Libenzi Xmail 1.12
Davide Libenzi Xmail 1.2
Davide Libenzi Xmail 1.20
Davide Libenzi Xmail 1.8
Davide Libenzi Xmail 1.9
Davide Libenzi Xmail 1.14
Davide Libenzi Xmail 1.15
Davide Libenzi Xmail 1.21
Davide Libenzi Xmail 1.3
Davide Libenzi Xmail 1.0
Davide Libenzi Xmail 1.1
Davide Libenzi Xmail 1.10
Davide Libenzi Xmail 1.18
Davide Libenzi Xmail 1.19
Davide Libenzi Xmail 1.6
Davide Libenzi Xmail 1.7
1 EDB exploit
6.4
CVSSv2
CVE-1999-0418
Denial of service in SMTP applications such as Sendmail, when a remote attacker (e.g. spammer) uses many "RCPT TO" commands in the same connection.
7.5
CVSSv2
CVE-2012-2140
The Mail gem prior to 2.4.3 for Ruby allows remote malicious users to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery.
Rubygems Mail Gem
Rubygems Mail Gem 2.3.3
Rubygems Mail Gem 2.3.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »