Unrated severityNVD Advisory· Published Apr 5, 1999· Updated Apr 16, 2026

CVE-1999-0439

Description

Buffer overflow in procmail before version 3.12 allows remote or local attackers to execute commands via expansions in the procmailrc configuration file.

Affected products

Procmail/Procmail
cpe:2.3:a:procmail:procmail:*:*:*:*:*:*:*:*
Range: <=3.12
Caldera/Openlinux
cpe:2.3:o:caldera:openlinux:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0439nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000