EulerOS 2.0 SP3 : sendmail (EulerOS-SA-2019-2661)

According to the version of the sendmail packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXE...

Code injection

The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program...

CVE-2014-3956

The smcloseonexec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FDCLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program...

sendmail-8.9.1.txt

Date: Thu, 9 Jul 1998 19:31:52 +0200 From: Michal Zalewski Subject: Sendmail up to 8.9.1 - mail.local instroduces new class of bugs Local, setuid mail delivery program included in recent packages - mail.local - introduces new class of local bugs, from DoS attacks to security compromises. For...