4 matches found
Debian Security Advisory DSA 083-1 (procmail)
The remote host is missing an update to procmail announced via advisory DSA 083-1. OpenVAS Vulnerability Test $Id: deb0831.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 083-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Mandrake Linux Security Advisory : procmail (MDKSA-2001:085)
In older versions of procmail, it is possible to crash procmail by sending it certain signals. If procmail is installed setuid, this could be exploited to gain unauthorized privilege. This problem is fixed in unstable version 3.20 and stable version 3.15.2. %NASLMINLEVEL 70300 C Tenable Network...
CVE-2001-0905
The provided sources confirm CVE-2001-0905: a race condition in the signal handling of procmail versions 3.20 and earlier when running setuid. This vulnerability allows local users to cause a denial of service or gain root privileges by sending a signal while a signal handling routine is already ...
CVE-2001-0905
Race condition in signal handling of procmail 3.20 and earlier, when running setuid, allows local users to cause a denial of service or gain root privileges by sending a signal while a signal handling routine is already running...