Sendmail 8.10.0 up to and including 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger (-d) command line arguments, which is interpreted as a negative number.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sendmail sendmail 8.12 |
||
sendmail sendmail 8.11.0 |
||
sendmail sendmail 8.11.1 |
||
sendmail sendmail 8.11.2 |
||
sendmail sendmail 8.11.3 |
||
sendmail sendmail 8.11.4 |
||
sendmail sendmail 8.11.5 |