Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sendmail vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2001-0588
sendmail 8.9.3, as included with the MMDF 2.43.3b package in SCO OpenServer 5.0.6, can allow a local malicious user to gain additional privileges via a buffer overflow in the first argument to the command.
Sco Openserver 5.0.6
3.7
CVSSv2
CVE-2001-1349
Sendmail prior to 8.11.4, and 8.12.0 prior to 8.12.0.Beta10, allows local users to cause a denial of service and possibly corrupt the heap and gain privileges via race conditions in signal handlers.
Sendmail Sendmail 8.10.1
Sendmail Sendmail 8.11.2
Sendmail Sendmail 8.11.3
Sendmail Sendmail 8.12
Sendmail Sendmail 8.11.0
Sendmail Sendmail 8.10
Sendmail Sendmail 8.10.2
Sendmail Sendmail 8.11.1
10
CVSSv2
CVE-2000-0348
A vulnerability in the Sendmail configuration file sendmail.cf as installed in SCO UnixWare 7.1.0 and previous versions allows an malicious user to gain root privileges.
Sco Unixware
10
CVSSv2
CVE-2000-0506
The "capabilities" feature in Linux prior to 2.2.16 allows local users to cause a denial of service or gain privileges by setting the capabilities to prevent a setuid program from dropping privileges, aka the "Linux kernel setuid/setcap vulnerability."
Linux Linux Kernel 2.0.30
Linux Linux Kernel 2.2.10
Linux Linux Kernel 2.2.13
Linux Linux Kernel 2.0.37
Linux Linux Kernel 2.2.0
Linux Linux Kernel 2.1
Linux Linux Kernel 2.0.34
Linux Linux Kernel 2.2.15
Linux Linux Kernel 2.2.16
Linux Linux Kernel 2.0
Linux Linux Kernel 2.2.12
Linux Linux Kernel 2.0.36
Linux Linux Kernel 2.2.15 Pre20
Linux Linux Kernel 2.2.14
Linux Linux Kernel 2.0.38
Linux Linux Kernel 2.0.33
Linux Linux Kernel 2.0.35
2 EDB exploits
5
CVSSv2
CVE-2000-0319
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote malicious user to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
Eric Allman Sendmail 8.7.1
Eric Allman Sendmail 8.7.6
Eric Allman Sendmail 8.7.5
Eric Allman Sendmail 8.7.4
Eric Allman Sendmail 8.8.x
Eric Allman Sendmail 8.8.2
Eric Allman Sendmail 8.9.1
Eric Allman Sendmail 8.8.1
Eric Allman Sendmail 8.7.2
Eric Allman Sendmail 8.9.3
Eric Allman Sendmail 8.6.x
Eric Allman Sendmail 8.7.3
Eric Allman Sendmail 5.58
Eric Allman Sendmail 8.8.3
Eric Allman Sendmail 8.8.4
Eric Allman Sendmail 5.59
Eric Allman Sendmail 8.8
Eric Allman Sendmail 8.7.x
Eric Allman Sendmail 8.8.5
10
CVSSv2
CVE-2000-1220
The line printer daemon (lpd) in the lpr package in multiple Linux operating systems allows local users to gain root privileges by causing sendmail to execute with arbitrary command line arguments, as demonstrated using the -C option to specify a configuration file.
Sgi Irix 6.5
Sgi Irix 6.5.15f
Sgi Irix 6.5.15m
Sgi Irix 6.5.2
Sgi Irix 6.5.3
Sgi Irix 6.5.14f
Sgi Irix 6.5.14m
Sgi Irix 6.5.18f
Sgi Irix 6.5.18m
Sgi Irix 6.5.8
Sgi Irix 6.5.9
Sgi Irix 6.5.1
Sgi Irix 6.5.10
Sgi Irix 6.5.11
Sgi Irix 6.5.16f
Sgi Irix 6.5.16m
Sgi Irix 6.5.4
Sgi Irix 6.5.5
Sgi Irix 6.5.12
Sgi Irix 6.5.13
Sgi Irix 6.5.17f
Sgi Irix 6.5.17m
1 EDB exploit
7.5
CVSSv2
CVE-1999-1592
Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.
Sendmail Sendmail 5
5
CVSSv2
CVE-1999-1109
Sendmail prior to 8.10.0 allows remote malicious users to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, while Sendmail continues to process the commands after the connection has been terminated.
Sendmail Sendmail
1 EDB exploit
2.1
CVSSv2
CVE-1999-0976
Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.
Eric Allman Sendmail 8.9.3
7.2
CVSSv2
CVE-1999-0769
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.
Paul Vixie Vixie Cron 3.0 Pl1
Redhat Linux 5.1
Redhat Linux 5.2
Redhat Linux 6.0
Redhat Linux 4.0
Redhat Linux 4.2
Caldera Openlinux 2.2
Debian Debian Linux 2.1
Debian Debian Linux 2.2
Redhat Linux 4.1
Redhat Linux 5.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »