Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2003-0694
HistoryOct 06, 2003 - 4:00 a.m.

CVE-2003-0694

2003-10-0604:00:00
[email protected]
web.nvd.nist.gov
6

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.052

Percentile

93.1%

JSON

The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.

Affected configurations

Nvd
Node
sendmailadvanced_message_serverMatch1.2
OR
sendmailadvanced_message_serverMatch1.3
OR
sendmailsendmailMatch2.6
OR
sendmailsendmailMatch2.6.1
OR
sendmailsendmailMatch2.6.2
OR
sendmailsendmailMatch3.0
OR
sendmailsendmailMatch3.0.1
OR
sendmailsendmailMatch3.0.2
OR
sendmailsendmailMatch3.0.3
OR
sendmailsendmailMatch8.8.8
OR
sendmailsendmailMatch8.9.0
OR
sendmailsendmailMatch8.9.1
OR
sendmailsendmailMatch8.9.2
OR
sendmailsendmailMatch8.9.3
OR
sendmailsendmailMatch8.10
OR
sendmailsendmailMatch8.10.1
OR
sendmailsendmailMatch8.10.2
OR
sendmailsendmailMatch8.11.0
OR
sendmailsendmailMatch8.11.1
OR
sendmailsendmailMatch8.11.2
OR
sendmailsendmailMatch8.11.3
OR
sendmailsendmailMatch8.11.4
OR
sendmailsendmailMatch8.11.5
OR
sendmailsendmailMatch8.11.6
OR
sendmailsendmailMatch8.12beta10
OR
sendmailsendmailMatch8.12beta12
OR
sendmailsendmailMatch8.12beta16
OR
sendmailsendmailMatch8.12beta5
OR
sendmailsendmailMatch8.12beta7
OR
sendmailsendmailMatch8.12.0
OR
sendmailsendmailMatch8.12.1
OR
sendmailsendmailMatch8.12.2
OR
sendmailsendmailMatch8.12.3
OR
sendmailsendmailMatch8.12.4
OR
sendmailsendmailMatch8.12.5
OR
sendmailsendmailMatch8.12.6
OR
sendmailsendmailMatch8.12.7
OR
sendmailsendmailMatch8.12.8
OR
sendmailsendmailMatch8.12.9
OR
sendmailsendmail_proMatch8.9.2
OR
sendmailsendmail_proMatch8.9.3
OR
sendmailsendmail_switchMatch2.1
OR
sendmailsendmail_switchMatch2.1.1
OR
sendmailsendmail_switchMatch2.1.2
OR
sendmailsendmail_switchMatch2.1.3
OR
sendmailsendmail_switchMatch2.1.4
OR
sendmailsendmail_switchMatch2.1.5
OR
sendmailsendmail_switchMatch2.2
OR
sendmailsendmail_switchMatch2.2.1
OR
sendmailsendmail_switchMatch2.2.2
OR
sendmailsendmail_switchMatch2.2.3
OR
sendmailsendmail_switchMatch2.2.4
OR
sendmailsendmail_switchMatch2.2.5
OR
sendmailsendmail_switchMatch3.0
OR
sendmailsendmail_switchMatch3.0.1
OR
sendmailsendmail_switchMatch3.0.2
OR
sendmailsendmail_switchMatch3.0.3
OR
sgiirixMatch6.5.15
OR
sgiirixMatch6.5.16
OR
sgiirixMatch6.5.17f
OR
sgiirixMatch6.5.17m
OR
sgiirixMatch6.5.18f
OR
sgiirixMatch6.5.18m
OR
sgiirixMatch6.5.19f
OR
sgiirixMatch6.5.19m
OR
sgiirixMatch6.5.20f
OR
sgiirixMatch6.5.20m
OR
sgiirixMatch6.5.21f
OR
sgiirixMatch6.5.21m
Node
applemac_os_xMatch10.2
OR
applemac_os_xMatch10.2.1
OR
applemac_os_xMatch10.2.2
OR
applemac_os_xMatch10.2.3
OR
applemac_os_xMatch10.2.4
OR
applemac_os_xMatch10.2.5
OR
applemac_os_xMatch10.2.6
OR
applemac_os_x_serverMatch10.2
OR
applemac_os_x_serverMatch10.2.1
OR
applemac_os_x_serverMatch10.2.2
OR
applemac_os_x_serverMatch10.2.3
OR
applemac_os_x_serverMatch10.2.4
OR
applemac_os_x_serverMatch10.2.5
OR
applemac_os_x_serverMatch10.2.6
OR
compaqtru64Match4.0f
OR
compaqtru64Match4.0f_pk6_bl17
OR
compaqtru64Match4.0f_pk7_bl18
OR
compaqtru64Match4.0f_pk8_bl22
OR
compaqtru64Match4.0g
OR
compaqtru64Match4.0g_pk3_bl17
OR
compaqtru64Match4.0g_pk4_bl22
OR
compaqtru64Match5.1
OR
compaqtru64Match5.1_pk3_bl17
OR
compaqtru64Match5.1_pk4_bl18
OR
compaqtru64Match5.1_pk5_bl19
OR
compaqtru64Match5.1_pk6_bl20
OR
compaqtru64Match5.1a
OR
compaqtru64Match5.1a_pk1_bl1
OR
compaqtru64Match5.1a_pk2_bl2
OR
compaqtru64Match5.1a_pk3_bl3
OR
compaqtru64Match5.1a_pk4_bl21
OR
compaqtru64Match5.1a_pk5_bl23
OR
compaqtru64Match5.1b
OR
compaqtru64Match5.1b_pk1_bl1
OR
compaqtru64Match5.1b_pk2_bl22
OR
freebsdfreebsdMatch3.0releng
OR
freebsdfreebsdMatch4.0releng
OR
freebsdfreebsdMatch4.3release_p38
OR
freebsdfreebsdMatch4.3releng
OR
freebsdfreebsdMatch4.4release_p42
OR
freebsdfreebsdMatch4.4releng
OR
freebsdfreebsdMatch4.5release_p32
OR
freebsdfreebsdMatch4.5releng
OR
freebsdfreebsdMatch4.6release_p20
OR
freebsdfreebsdMatch4.6releng
OR
freebsdfreebsdMatch4.7release_p17
OR
freebsdfreebsdMatch4.7releng
OR
freebsdfreebsdMatch4.8release_p6
OR
freebsdfreebsdMatch4.8releng
OR
freebsdfreebsdMatch4.9pre-release
OR
freebsdfreebsdMatch5.0release_p14
OR
freebsdfreebsdMatch5.0releng
OR
freebsdfreebsdMatch5.1release_p5
OR
freebsdfreebsdMatch5.1releng
OR
gentoolinuxMatch0.5
OR
gentoolinuxMatch0.7
OR
gentoolinuxMatch1.1a
OR
gentoolinuxMatch1.2
OR
gentoolinuxMatch1.4rc1
OR
gentoolinuxMatch1.4rc2
OR
gentoolinuxMatch1.4rc3
OR
hphp-uxMatch11.00
OR
hphp-uxMatch11.0.4
OR
hphp-uxMatch11.11
OR
hphp-uxMatch11.22
OR
ibmaixMatch4.3.3
OR
ibmaixMatch5.1
OR
ibmaixMatch5.2
OR
netbsdnetbsdMatch1.4.3
OR
netbsdnetbsdMatch1.5
OR
netbsdnetbsdMatch1.5sh3
OR
netbsdnetbsdMatch1.5x86
OR
netbsdnetbsdMatch1.5.1
OR
netbsdnetbsdMatch1.5.2
OR
netbsdnetbsdMatch1.5.3
OR
netbsdnetbsdMatch1.6
OR
netbsdnetbsdMatch1.6beta
OR
netbsdnetbsdMatch1.6.1
OR
sunsolarisMatch2.6
OR
sunsolarisMatch7.0x86
OR
sunsolarisMatch8.0x86
OR
sunsolarisMatch9.0sparc
OR
sunsolarisMatch9.0x86
OR
sunsunosMatch-
OR
sunsunosMatch5.7
OR
sunsunosMatch5.8
OR
turbolinuxturbolinux_advanced_serverMatch6.0
OR
turbolinuxturbolinux_serverMatch6.1
OR
turbolinuxturbolinux_serverMatch6.5
OR
turbolinuxturbolinux_serverMatch7.0
OR
turbolinuxturbolinux_serverMatch8.0
OR
turbolinuxturbolinux_workstationMatch6.0
OR
turbolinuxturbolinux_workstationMatch7.0
OR
turbolinuxturbolinux_workstationMatch8.0
VendorProductVersionCPE
sendmailadvanced_message_server1.2cpe:2.3:a:sendmail:advanced_message_server:1.2:*:*:*:*:*:*:*
sendmailadvanced_message_server1.3cpe:2.3:a:sendmail:advanced_message_server:1.3:*:*:*:*:*:*:*
sendmailsendmail2.6cpe:2.3:a:sendmail:sendmail:2.6:*:*:*:*:*:*:*
sendmailsendmail2.6.1cpe:2.3:a:sendmail:sendmail:2.6.1:*:*:*:*:*:*:*
sendmailsendmail2.6.2cpe:2.3:a:sendmail:sendmail:2.6.2:*:*:*:*:*:*:*
sendmailsendmail3.0cpe:2.3:a:sendmail:sendmail:3.0:*:*:*:*:*:*:*
sendmailsendmail3.0.1cpe:2.3:a:sendmail:sendmail:3.0.1:*:*:*:*:*:*:*
sendmailsendmail3.0.2cpe:2.3:a:sendmail:sendmail:3.0.2:*:*:*:*:*:*:*
sendmailsendmail3.0.3cpe:2.3:a:sendmail:sendmail:3.0.3:*:*:*:*:*:*:*
sendmailsendmail8.8.8cpe:2.3:a:sendmail:sendmail:8.8.8:*:*:*:*:*:*:*
Rows per page:
1-10 of 1631

References

Related

cvelist 1
redhat 1
nessus 12
ubuntucve 1
metasploit 1
packetstorm 1
debiancve 1
suse 1
cve 1
openvas 2
osv 1
cert 1
debian 1
cvelist
cvelist
CVE-2003-0694
2003-09-18 04:00:00
redhat
redhat
(RHSA-2003:284) sendmail security update
2003-09-17 00:00:00
nessus
nessus
SUSE-SA:2003:040: sendmail, sendmail-tls
2004-07-25 00:00:00
AIX 5.2 : IY48657
2004-09-01 00:00:00
AIX 5.1 : IY48658
2004-09-01 00:00:00
ubuntucve
ubuntucve
CVE-2003-0694
2003-10-06 00:00:00
metasploit
metasploit
Sendmail SMTP Address prescan Memory Corruption
2009-09-12 10:56:36
packetstorm
packetstorm
Sendmail SMTP Address prescan Memory Corruption
2024-08-31 00:00:00
debiancve
debiancve
CVE-2003-0694
2003-10-06 04:00:00
suse
suse
local/remote privilege escalation in sendmail, sendmail-tls
2003-09-20 16:11:37
cve
cve
CVE-2003-0694
2003-10-06 04:00:00
openvas
openvas
Debian: Security Advisory (DSA-384)
2008-01-17 00:00:00
Debian Security Advisory DSA 384-1 (sendmail)
2008-01-17 00:00:00
osv
osv
sendmail - buffer overflows
2003-09-17 00:00:00
cert
cert
Sendmail prescan() buffer overflow vulnerability
2003-09-17 00:00:00
debian
debian
[SECURITY] [DSA-384-1] New sendmail packages fix buffer overflows
2003-09-18 02:19:55

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.052

Percentile

93.1%

JSON
Related for NVD:CVE-2003-0694
cvelist1redhat1nessus12ubuntucve1metasploit1packetstorm1debiancve1suse1cve1openvas2osv1cert1debian1