Unrated severityNVD Advisory· Published Aug 23, 1995· Updated Apr 16, 2026
CVE-1999-1580
CVE-1999-1580
Description
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
Affected products
10cpe:2.3:a:sendmail:sendmail:5.59:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:sendmail:sendmail:5.59:*:*:*:*:*:*:*
- cpe:2.3:a:sendmail:sendmail:5.61:*:*:*:*:*:*:*
- cpe:2.3:a:sendmail:sendmail:5.65:*:*:*:*:*:*:*
cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.2:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.3:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.3c:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.3u1:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:4.1.4jl:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vulnvdPatchThird Party AdvisoryUS Government Resource
- www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.htmlnvdExploit
- www.auscert.org.au/render.htmlnvdVendor Advisory
- www.kb.cert.org/vuls/id/3278nvdThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/7829nvd
News mentions
0No linked articles in our index yet.