CVE-2002-1165

🗓️ 03 Oct 2002 04:00:00Reported by Debian Security Bug TrackerType

debiancve

debiancve🔗 security-tracker.debian.org👁 32 Views

Vulnerabilities in Sendmail allow command injection via improper filtering of restrictions.

Reporter	Title	Published	Views	Family All 17
Tenable Nessus	Sendmail < 8.12.8 Header Handling Remote Overflow	18 Aug 200400:00	–	nessus
Tenable Nessus	Sendmail < 8.12.8 Double Pipe smrsh Bypass Overflow	18 Aug 200400:00	–	nessus
Tenable Nessus	Mandrake Linux Security Advisory : sendmail (MDKSA-2002:083)	31 Jul 200400:00	–	nessus
Tenable Nessus	RHEL 2.1 : sendmail (RHSA-2002:259)	6 Jul 200400:00	–	nessus
Tenable Nessus	Sendmail 8.8.8 - 8.12.7 Multiple Vulnerabilities (Bypass, OF)	5 Mar 200300:00	–	nessus
CVE	CVE-2002-1165	3 Oct 200204:00	–	cve
Cvelist	CVE-2002-1165	3 Oct 200204:00	–	cvelist
EUVD	EUVD-2002-1149	7 Oct 202500:30	–	euvd
NVD	CVE-2002-1165	11 Oct 200204:00	–	nvd
OpenVAS	Sendmail 8.8.8 - 8.12.7 Double Pipe Access Validation Vulnerability	3 Nov 200500:00	–	openvas

OS	OS Version	Architecture	Package	Package Version	Filename
Debian	11	any	sendmail	8.12.3-5	sendmail_8.12.3-5_any.deb
Debian	12	any	sendmail	8.12.3-5	sendmail_8.12.3-5_any.deb
Debian	13	any	sendmail	8.12.3-5	sendmail_8.12.3-5_any.deb
Debian	14	any	sendmail	8.12.3-5	sendmail_8.12.3-5_any.deb
Debian	999	any	sendmail	8.12.3-5	sendmail_8.12.3-5_any.deb

03 Oct 2002 04:00Current

4.3Medium risk

Vulners AI Score4.3

CVSS 24.6

EPSS0.01099

cve 2002 1165 sendmail vulnerabilities command injection restricted shell improper filtering