Lucene search

[email protected]CVE-2000-0319

HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0319

2000-10-1304:00:00

[email protected]

web.nvd.nist.gov

sendmail

vulnerability

denial of service

remote attack

mailbox corruption

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.003

Percentile

65.2%

JSON

mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.

Affected configurations

NVD

Node

eric_allmansendmailMatch5.58

eric_allmansendmailMatch5.59

eric_allmansendmailMatch8.6.x

eric_allmansendmailMatch8.7.1

eric_allmansendmailMatch8.7.2

eric_allmansendmailMatch8.7.3

eric_allmansendmailMatch8.7.4

eric_allmansendmailMatch8.7.5

eric_allmansendmailMatch8.7.6

eric_allmansendmailMatch8.7.x

eric_allmansendmailMatch8.8

eric_allmansendmailMatch8.8.1

eric_allmansendmailMatch8.8.2

eric_allmansendmailMatch8.8.3

eric_allmansendmailMatch8.8.4

eric_allmansendmailMatch8.8.5

eric_allmansendmailMatch8.8.x

eric_allmansendmailMatch8.9.1

eric_allmansendmailMatch8.9.3

VendorProductVersionCPE
eric_allmansendmail8.7.xcpe:/a:eric_allman:sendmail:8.7.x:::
eric_allmansendmail8.8.4cpe:/a:eric_allman:sendmail:8.8.4:::
eric_allmansendmail5.58cpe:/a:eric_allman:sendmail:5.58:::
eric_allmansendmail8.7.3cpe:/a:eric_allman:sendmail:8.7.3:::
eric_allmansendmail8.8.3cpe:/a:eric_allman:sendmail:8.8.3:::
eric_allmansendmail8.8.5cpe:/a:eric_allman:sendmail:8.8.5:::
eric_allmansendmail8.9.1cpe:/a:eric_allman:sendmail:8.9.1:::
eric_allmansendmail8.7.1cpe:/a:eric_allman:sendmail:8.7.1:::
eric_allmansendmail8.6.xcpe:/a:eric_allman:sendmail:8.6.x:::
eric_allmansendmail8.7.4cpe:/a:eric_allman:sendmail:8.7.4:::

Vendor	Product	Version	CPE
eric_allman	sendmail	8.7.x	cpe:/a:eric_allman:sendmail:8.7.x:::
eric_allman	sendmail	8.8.4	cpe:/a:eric_allman:sendmail:8.8.4:::
eric_allman	sendmail	5.58	cpe:/a:eric_allman:sendmail:5.58:::
eric_allman	sendmail	8.7.3	cpe:/a:eric_allman:sendmail:8.7.3:::
eric_allman	sendmail	8.8.3	cpe:/a:eric_allman:sendmail:8.8.3:::
eric_allman	sendmail	8.8.5	cpe:/a:eric_allman:sendmail:8.8.5:::
eric_allman	sendmail	8.9.1	cpe:/a:eric_allman:sendmail:8.9.1:::
eric_allman	sendmail	8.7.1	cpe:/a:eric_allman:sendmail:8.7.1:::
eric_allman	sendmail	8.6.x	cpe:/a:eric_allman:sendmail:8.6.x:::
eric_allman	sendmail	8.7.4	cpe:/a:eric_allman:sendmail:8.7.4:::

Rows per page:

1-10 of 191

References

www.securityfocus.com/bid/1146

www.securityfocus.com/templates/archive.pike?list=1&msg=2694.000424%40SECURITY.NNOV.RU

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.6

Confidence

High

EPSS

0.003

Percentile

65.2%

JSON

Related for CVE-2000-0319

cvelist1 openvas1 nessus1 nvd1