Sendmail Security Vulnerabilities and Issues — Sendmail CVE List

Lucene search

SendmailSendmail

6 matches found

CVE•added 2007/04/25 4:19 p.m.•80 views

CVE-2007-2246

Unspecified vulnerability in HP-UX B.11.00 and B.11.11, when running sendmail 8.9.3 or 8.11.1; and HP-UX B.11.23 when running sendmail 8.11.1; allows remote attackers to cause a denial of service via unknown attack vectors. NOTE: due to the lack of details from HP, it is not known whether this issu...

7.8CVSS7.2AI score0.25248EPSS

CVE•added 2007/10/18 10:0 a.m.•54 views

CVE-2002-2261

Sendmail 8.9.0 through 8.12.6 allows remote attackers to bypass relaying restrictions enforced by the 'check_relay' function by spoofing a blank DNS hostname.

7.5CVSS6.5AI score0.00653EPSS

CVE•added 2007/07/12 5:0 p.m.•50 views

CVE-1999-1592

Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129.

7.5CVSS7.1AI score0.00323EPSS

CVE•added 2007/03/27 11:19 p.m.•41 views

CVE-2006-7176

The version of Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier does not reject the "localhost.localdomain" domain name for e-mail messages that come from external hosts, which might allow remote attackers to spoof messages.

4.3CVSS5.6AI score0.00697EPSS

CVE•added 2007/03/27 11:19 p.m.•37 views

CVE-2006-7175

The version of Sendmail 8.13.1-2 on Red Hat Enterprise Linux 4 Update 4 and earlier does not allow the administrator to disable SSLv2 encryption, which could cause less secure channels to be used than desired.

7.5CVSS6.5AI score0.00233EPSS

CVE•added 2007/11/01 5:0 p.m.•25 views

CVE-2002-2423

Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response.

6.4CVSS7AI score0.00274EPSS