Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sendmail
(Eric_allman)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 14 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2000-04-23 | CVE-2000-0319 | mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n. | Sendmail | N/A | ||
| 1995-08-17 | CVE-1999-0203 | In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program. | Sendmail | N/A | ||
| 1996-10-01 | CVE-1999-0206 | MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access. | Sendmail | N/A | ||
| 1996-12-03 | CVE-1999-0129 | Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | Bsd_os, Sendmail, Freebsd, Hp\-Ux, Aix, Internet_faststart, Openserver, Solaris, Sunos | N/A | ||
| 1997-01-01 | CVE-1999-0204 | Sendmail 8.6.9 allows remote attackers to execute root commands, using ident. | Sendmail | N/A | ||
| 1997-01-01 | CVE-1999-0163 | In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | Sendmail | N/A | ||
| 1999-01-01 | CVE-1999-0205 | Denial of service in Sendmail 8.6.11 and 8.6.12. | Sendmail | N/A | ||
| 1993-09-30 | CVE-1999-0145 | Sendmail WIZ command enabled, allowing root access. | Sendmail | N/A | ||
| 1988-10-01 | CVE-1999-0095 | The debug command in Sendmail is enabled, allowing attackers to execute commands as root. | Sendmail | N/A | ||
| 1999-12-07 | CVE-1999-0976 | Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. | Sendmail | N/A |