Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2001-0789
Format string vulnerability in avpkeeper in Kaspersky KAV 3.5.135.2 for Sendmail allows remote malicious users to cause a denial of service or possibly execute arbitrary code via a malformed mail message.
Kaspersky Kaspersky Anti-virus 3.5.132.2
4.6
CVSSv2
CVE-2001-0653
Sendmail 8.10.0 up to and including 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger (-d) command line arguments, which is interpreted as a negative number.
Sendmail Sendmail 8.12
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.11.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.11.4
Sendmail Sendmail 8.11.5
4 EDB exploits
4.6
CVSSv2
CVE-2001-0588
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local malicious user to gain additional privileges via a buffer overflow in the first argument to the command.
Sco Openserver 5.0.6
3.7
CVSSv2
CVE-2001-1349
Sendmail prior to 8.11.4, and 8.12.0 prior to 8.12.0.Beta10, allows local users to cause a denial of service and possibly corrupt the heap and gain privileges via race conditions in signal handlers.
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.12
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.1
10
CVSSv2
CVE-2000-0348
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and previous versions allows an malicious user to gain root privileges.
Sco Unixware
10
CVSSv2
CVE-2000-0506
The "capabilities" feature in Linux prior to 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."
Linux Linux Kernel 2.0.30
Linux Linux Kernel 2.2.10
Linux Linux Kernel 2.2.13
Linux Linux Kernel 2.0.37
Linux Linux Kernel 2.2.0
Linux Linux Kernel 2.1
Linux Linux Kernel 2.0.34
Linux Linux Kernel 2.2.15
Linux Linux Kernel 2.2.16
Linux Linux Kernel 2.0
Linux Linux Kernel 2.2.12
Linux Linux Kernel 2.0.36
Linux Linux Kernel 2.2.15 Pre20
Linux Linux Kernel 2.2.14
Linux Linux Kernel 2.0.38
Linux Linux Kernel 2.0.33
Linux Linux Kernel 2.0.35
2 EDB exploits
5
CVSSv2
CVE-2000-0319
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote malicious user to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
Eric Allman Sendmail 8.7.1
Eric Allman Sendmail 8.7.6
Eric Allman Sendmail 8.7.5
Eric Allman Sendmail 8.7.4
Eric Allman Sendmail 8.8.x
Eric Allman Sendmail 8.8.2
Eric Allman Sendmail 8.9.1
Eric Allman Sendmail 8.8.1
Eric Allman Sendmail 8.7.2
Eric Allman Sendmail 8.9.3
Eric Allman Sendmail 8.6.x
Eric Allman Sendmail 8.7.3
Eric Allman Sendmail 5.58
Eric Allman Sendmail 8.8.3
Eric Allman Sendmail 8.8.4
Eric Allman Sendmail 5.59
Eric Allman Sendmail 8.8
Eric Allman Sendmail 8.7.x
Eric Allman Sendmail 8.8.5
10
CVSSv2
CVE-2000-1220
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
Sgi Irix 6.5
Sgi Irix 6.5.15f
Sgi Irix 6.5.15m
Sgi Irix 6.5.2
Sgi Irix 6.5.3
Sgi Irix 6.5.14f
Sgi Irix 6.5.14m
Sgi Irix 6.5.18f
Sgi Irix 6.5.18m
Sgi Irix 6.5.8
Sgi Irix 6.5.9
Sgi Irix 6.5.1
Sgi Irix 6.5.10
Sgi Irix 6.5.11
Sgi Irix 6.5.16f
Sgi Irix 6.5.16m
Sgi Irix 6.5.4
Sgi Irix 6.5.5
Sgi Irix 6.5.12
Sgi Irix 6.5.13
Sgi Irix 6.5.17f
Sgi Irix 6.5.17m
1 EDB exploit
7.5
CVSSv2
CVE-1999-1592
Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.
Sendmail Sendmail 5
5
CVSSv2
CVE-1999-1109
Sendmail prior to 8.10.0 allows remote malicious users to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, while Sendmail continues to process the commands after the connection has been terminated.
Sendmail Sendmail
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
denial of service
CVE-2024-27371
CVE-2024-20405
CVE-2024-31627
CVE-2024-31625
race condition
CVE-2024-4358
cross-site scripting
CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »