3 matches found
CVE-2001-0713
Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the configuration file whose names contain characters with the high bit set, such as 1 macro names that ar...
CVE-2001-0713
Sendmail before 8.12.1 does not properly drop privileges when the -C option is used to load custom configuration files, which allows local users to gain privileges via malformed arguments in the configuration file whose names contain characters with the high bit set, such as 1 macro names that ar...
CVE-2001-0713
Sendmail 8.12.0.x is vulnerable to CVE-2001-0713 through improper privilege dropping when the -C option loads custom configuration files. A programming error allows a local attacker to regain dropped privileges by crafting configuration entries with high-bit characters (e.g., one-character macro ...