33 matches found
CVE-2021-3618
ALPACA (CVE-2021-3618) is an application-layer protocol content confusion attack affecting multiple assets (e.g., nginx, vsftpd, sendmail) where TLS servers configured for different protocols with compatible certificates can allow a MITM attacker to redirect subdomain traffic to another, potentia...
CVE-2009-4565
CVE-2009-4565 affects sendmail up to version 8.14.3; the vulnerability arises from improper handling of a ‘\0’ character in the Common Name (CN) field of X.509 certificates. This flaw enables MITM spoofing of SSL-based SMTP servers via a crafted server certificate from a trusted CA and could allo...
CVE-2014-3956
CVE-2014-3956 affects sendmail up to version 8.14.9, where the sm_close_on_exec function in conf.c has its arguments in the wrong order, causing FD_CLOEXEC flags not to be set. This can allow local users to access unintended high-numbered file descriptors via a custom mail-delivery program. The c...
CVE-2006-0058
CVE-2006-0058 is a race-condition vulnerability in Sendmail 8.13.x (before 8.13.6) that can be triggered remotely to execute arbitrary code. The issue arises from improper handling of timeouts during message processing, where setjmp/longjmp usage may be interrupted, enabling memory corruption in ...
CVE-2023-51765
CVE-2023-51765 affects sendmail up to 8.17.2, enabling SMTP smuggling via non-standard line endings that can spoof MAIL FROM and bypass SPF. The issue is mitigated by upgrading to 8.18.x or later (noted to enforce stricter RFC compliance, e.g., with srv_features). Several vendors have released fi...
CVE-2006-1173
CVE-2006-1173 affects Sendmail before 8.13.7..remote attackers can trigger denial of service by sending deeply nested, malformed multipart MIME messages that exhaust the stack during mime8to7 (8-bit to 7-bit conversion), potentially preventing queued messages from being delivered and possibly lea...
CVE-2003-0161
Technical details for CVE-2003-0161 are not publicly provided in the supplied documents; monitor for updates from the connected advisories and feeds.
CVE-2003-0694
CVE-2003-0694 affects Sendmail 8.12.9, where the prescan function (parsing SMTP headers in parseaddr.c) can be exploited remotely via a buffer overflow to execute arbitrary code. Debian DSA-384 also references CAN-2003-0694 in its two vulnerabilities entry. The available documents confirm affecte...
CVE-2002-1337
CVE-2002-1337 affects Sendmail 5.79 through 8.12.7, with a buffer overflow in header processing (crackaddr in headers.c) that enables remote code execution, reported as a high-severity issue. Public advisories and patches exist across multiple vendors: HP-UX patches PHNE_35483/35484 (and related ...
CVE-2007-2246
Technical details about CVE-2007-2246 are not publicly available in the provided documents. Monitor for updates.
CVE-2003-0681
CVE-2003-0681 relates to a potential buffer overflow in Sendmail 8.12.x rule-set parsing when nonstandard rulesets (recipient, final, or mailer-specific envelope recipients) are used. Public documents indicate vulnerable Sendmail variants across platforms (notably HP-UX patches PHNE_35483/PHNE_35...
CVE-2006-4434
CVE-2006-4434 affects Sendmail before 8.13.8, with a use-after-free in header processing that can crash the daemon and cause a denial of service. Context from the initial entry notes the vendor’s dispute on severity, but multiple vulnerability advisories and patch plugins confirm the issue and re...
CVE-2002-1165
CVE-2002-1165 affects Sendmail’s Restricted Shell (SMRSH). The issue allows bypassing smrsh restrictions by appending commands after || sequences or after / characters, due to improper filtering/verification. Affected: Sendmail versions around 8.11.x–8.12.x (and related ranges). Impact: a local a...
CVE-2009-1490
CVE-2009-1490 is a heap-based buffer overflow in Sendmail prior to 8.13.2 triggered by a long X-header, e.g., an X-Testing header. Public sources (OSV, Nessus/OpenVAS entries) describe remote exploitation that could cause a denial of service (daemon crash) and possibly allow arbitrary code execut...
CVE-2002-2261
CVE-2002-2261 affects Sendmail versions 8.9.0–8.12.6. The flaw allows remote attackers to bypass relaying restrictions enforced by the check_relay function by spoofing a blank DNS hostname. Root cause is related to how the relay check handles DNS hostnames, enabling unauthorized relaying. No expl...
CVE-2005-2070
CVE-2005-2070 affects the ClamAV Mail fILTER (clamav-milter) when used with Sendmail and long timeouts. Affected versions: 0.84–0.85d; vulnerability allows remote attackers to cause a denial of service by keeping an open connection, preventing ClamAV from reloading. Debian/DSA-737-1 recommendatio...
CVE-2006-7176
CVE-2006-7176 affects Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier, where the MTA did not reject the localhost.localdomain domain for messages from external hosts, enabling potential message spoofing. Connected advisories (RHSA-2007:0252 and related vendor notes) document ...
CVE-2001-0713
Sendmail 8.12.0.x is vulnerable to CVE-2001-0713 through improper privilege dropping when the -C option loads custom configuration files. A programming error allows a local attacker to regain dropped privileges by crafting configuration entries with high-bit characters (e.g., one-character macro ...
CVE-2002-1827
Affected software: Sendmail 8.9.0–8.12.3. The issue is that local users can trigger a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files. The available connected documents confirm the vulnerability is a local DoS via file locking, but do ...
CVE-2003-0688
The CVE-2003-0688 issue affects the Sendmail 8.12.x line (including 8.12.8) when using the DNS maps feature enabled via ENHDNSBL. The vulnerability stems from improper initialization of RESOURCE_RECORD_T data structures, causing Sendmail to call free() on incorrect or uninitialized data after rec...
CVE-1999-0478
HP-UX sendmail 8.8.6 is affected by a denial-of-service condition related to accepting connections. The vulnerability is documented as CVE-1999-0478 and is associated with HP-UX 8.8.6; HP issued patch PHNE_17190 for s700_800 11.00 sendmail(1m) 8.8.6 to address this issue. The available connected ...
CVE-1999-1592
Technical details about CVE-1999-1592 are not publicly provided in the supplied documents; no explicit affected products, vulnerable components, root cause, or remediation are present. Monitor for updates.
CVE-1999-1109
The vulnerability CVE-1999-1109 affects Sendmail 8.x prior to 8.10.0. It allows remote attackers to cause a denial of service by sending a sequence of ETRN commands, then disconnecting; the server reportedly continues to process the commands after the connection is terminated. The available docum...
CVE-2001-0715
CVE-2001-0715 affects Sendmail up to version 8.12.0/8.12.x prior to 8.12.1. The flaw allows a local user to disclose sensitive information about the mail queue by enabling debug flags (-d) when RestrictQueueRun is not enabled. The OpenVAS/Nessus entries confirm the vulnerability is a local inform...
CVE-2002-0906
CVE-2002-0906 describes a buffer overflow in Sendmail before 8.12.5 when configured to use a custom DNS map to query TXT records. A malicious DNS server could trigger the overflow, allowing a remote attacker to cause a denial of service and, potentially, execute arbitrary code on the affected hos...
CVE-2001-0653
CVE-2001-0653 affects Sendmail 8.10.0–8.11.5 and 8.12.0 beta. The root cause is an input-validation/overflow in the debugger (-d) category handling: a large numeric value can be interpreted as a signed negative index, bypassing bounds checks and allowing local writes to process memory. Consequenc...
CVE-2001-1349
CVE-2001-1349 affects Sendmail before 8.11.4 and before 8.12.0.Beta10; the issue is described as local denial of service with possible heap corruption and privilege escalation due to race conditions in signal handlers. OpenVAS additionally notes a remote header buffer overflow for Sendmail 5.79–8...
CVE-2003-0308
CVE-2003-0308 : The Debian GNU/Linux 3.0 package of Sendmail 8.12.3 does not securely create temporary files, enabling local users to gain additional privileges via the expn, checksendmail, or doublebounce.pl scripts. The issue is due to insecure temporary file handling within these components. E...
CVE-2001-0714
The CVE-2001-0714 entry describes a local DoS in Sendmail pre-8.12.1 where an attacker can cause data loss by abusing queue processing options: setting a high initial hop count (-h), or using -qR/-qS, if RestrictQueueRun is not enabled. Connected sources (NVD, Nessus plugins, OpenVAS NASL) confir...
CVE-1999-1580
CVE-1999-1580 affects SunOS sendmail 5.59–5.65. The bug arises from using popen to process a forwarding host argument, enabling local users to gain root privileges by manipulating the IFS variable and passing crafted values to the -oR option. This creates a local privilege escalation vector. Publ...
CVE-2006-7175
CVE-2006-7175 affects Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier. The vulnerability arises because the administrator cannot disable SSLv2 encryption, which could allow use of less secure channels. Documented impact includes potential exposure of confidential information ...
CVE-1999-1309
The CVE-1999-1309 entry describes a local privilege escalation in Sendmail via a long value in the debug -d option, enabling root access on affected systems. According to connected sources, this affects Sendmail 8.x prior to 8.6.7 (long debug overflow). The underlying issue is a local overflow tr...
CVE-2002-2423
CVE-2002-2423 affects Sendmail versions 8.12.0 through 8.12.6. The vulnerability arises because log messages longer than 100 characters are truncated, allowing a remote attacker to prevent the IP address from being logged via a long IDENT response. The connected Red Hat entry and other CVE record...