Vulners
Lucene search
Sendmail < 8.11.6 -d category Value Local Overflow
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | Sendmail < 8.11.6 Local Overflow | 18 Aug 200400:00 | – | nessus |
| Mandrake Linux Security Advisory : sendmail (MDKSA-2001:075) | 31 Jul 200400:00 | – | nessus |
 | CVE-2001-0653 | 9 Mar 200205:00 | – | cve |
 | CVE-2001-0653 | 9 Mar 200205:00 | – | cvelist |
 | EUVD-2001-0639 | 7 Oct 202500:30 | – | euvd |
 | CVE-2001-0653 | 20 Sep 200104:00 | – | nvd |
 | *ALERT* UPDATED BID 3163 (URGENCY 6.58): Sendmail Debugger Arbitrary Code Execution Vulnerability (fwd) | 22 Aug 200100:00 | – | securityvulns |
| Source | Link |
|---|---|
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#
# (C) Tenable Network Security, Inc.
#
# References
# [also vulnerable to a heap overflow]
# Date: Mon, 28 May 2001 18:16:57 -0400 (EDT)
# From: "Michal Zalewski" <[email protected]>
# To: [email protected]
# Subject: Unsafe Signal Handling in Sendmail
#
include("compat.inc");
if (description)
{
script_id(10729);
script_version("1.25");
script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/22");
script_cve_id("CVE-2001-0653");
script_bugtraq_id(3163);
script_name(english:"Sendmail < 8.11.6 -d category Value Local Overflow");
script_summary(english:"Check Sendmail version number");
script_set_attribute(attribute:"synopsis", value:
"The remote service is vulnerable to a privilege escalation attack.");
script_set_attribute(attribute:"description", value:
"The remote Sendmail server, according to its version number, may be
vulnerable to a local buffer overflow allowing local users to gain
root privileges.");
script_set_attribute(attribute:"solution", value:"Upgrade to Sendmail 8.12beta19 or 8.11.6.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2001-0653");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2001/08/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2001/08/23");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/a:sendmail:sendmail");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2001-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SMTP problems");
script_dependencies("sendmail_detect.nbin");
script_require_keys("installed_sw/Sendmail");
exit(0);
}
include("vcf.inc");
var app_info = vcf::combined_get_app_info(app:"Sendmail");
vcf::check_all_backporting(app_info:app_info);
var constraints = [{ "fixed_version" : "8.11.6" }];
vcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
22 Jan 2026 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 24.6
EPSS0.00233