VYPR
Unrated severityNVD Advisory· Published Apr 5, 1999· Updated Jun 16, 2026

CVE-1999-0439

CVE-1999-0439

Description

Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file.

Affected products

3
  • Procmail/Procmail2 versions
    cpe:2.3:a:procmail:procmail:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:procmail:procmail:*:*:*:*:*:*:*:*range: <=3.12
    • (no CPE)range: <3.12
  • cpe:2.3:o:caldera:openlinux:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.