Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-1999-0769

Published: 25/08/1999 Updated: 09/09/2008
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Paul Vixie

Vulnerability Summary

Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

Vulnerable Product Search on Vulmon Subscribe to Product

paul vixie vixie cron 3.0_pl1

redhat linux 5.1

redhat linux 5.2

redhat linux 6.0

redhat linux 4.0

redhat linux 4.2

caldera openlinux 2.2

debian debian linux 2.1

debian debian linux 2.2

redhat linux 4.1

redhat linux 5.0

Exploits

Exploit DB: Caldera OpenLinux 2.2 / Debian 2.1/2.2 / RedHat 6.0 - Vixie Cron MAILTO Sendmail
Caldera OpenLinux 22 ,Debian Linux 21/22,RedHat Linux <= 60 Vixie Cron MAILTO Sendmail Vulnerability source: wwwsecurityfocuscom/bid/611/info Failure by the vixie cron daemon from validating the contents of a user supplied environment variable allow a malicious users to pass arbitrary command line arguments to sendmail while runni ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/611https://nvd.nist.govhttps://www.exploit-db.com/exploits/19474/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook