Lucene search

K
cve[email protected]CVE-2000-0319
HistoryOct 13, 2000 - 4:00 a.m.

CVE-2000-0319

2000-10-1304:00:00
web.nvd.nist.gov
27
sendmail
vulnerability
denial of service
remote attack
mailbox corruption

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.

Affected configurations

NVD
Node
eric_allmansendmailMatch5.58
OR
eric_allmansendmailMatch5.59
OR
eric_allmansendmailMatch8.6.x
OR
eric_allmansendmailMatch8.7.1
OR
eric_allmansendmailMatch8.7.2
OR
eric_allmansendmailMatch8.7.3
OR
eric_allmansendmailMatch8.7.4
OR
eric_allmansendmailMatch8.7.5
OR
eric_allmansendmailMatch8.7.6
OR
eric_allmansendmailMatch8.7.x
OR
eric_allmansendmailMatch8.8
OR
eric_allmansendmailMatch8.8.1
OR
eric_allmansendmailMatch8.8.2
OR
eric_allmansendmailMatch8.8.3
OR
eric_allmansendmailMatch8.8.4
OR
eric_allmansendmailMatch8.8.5
OR
eric_allmansendmailMatch8.8.x
OR
eric_allmansendmailMatch8.9.1
OR
eric_allmansendmailMatch8.9.3

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

Related for CVE-2000-0319