VYPR
Vendor

Eric Allman

Products
2
CVEs
15
Across products
15
Status
Private

Products

2

Recent CVEs

15
  • CVE-1999-0204Jan 1, 1997
    risk 0.04cvss epss 0.09

    Sendmail 8.6.9 allows remote attackers to execute root commands, using ident.

  • CVE-1999-0393Jan 1, 1999
    risk 0.03cvss epss 0.02

    Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.

  • CVE-1999-0130Nov 16, 1996
    risk 0.03cvss epss 0.01

    Local users can start Sendmail in daemon mode and gain root privileges.

  • CVE-1999-0057Nov 16, 1998
    risk 0.01cvss epss 0.08

    Vacation program allows command execution by remote users through a sendmail command.

  • CVE-2000-0319Apr 23, 2000
    risk 0.00cvss epss 0.02

    mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.

  • CVE-1999-0976Dec 7, 1999
    risk 0.00cvss epss 0.00

    Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.

  • CVE-1999-0205Jan 1, 1999
    risk 0.00cvss epss 0.01

    Denial of service in Sendmail 8.6.11 and 8.6.12.

  • CVE-1999-0047Jan 28, 1997
    risk 0.00cvss epss 0.03

    MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.

  • CVE-1999-0163Jan 1, 1997
    risk 0.00cvss epss 0.00

    In older versions of Sendmail, an attacker could use a pipe character to execute root commands.

  • CVE-1999-0129Dec 3, 1996
    risk 0.00cvss epss 0.01

    Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.

  • CVE-1999-0206Oct 1, 1996
    risk 0.00cvss epss 0.02

    MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.

  • CVE-1999-0131Sep 11, 1996
    risk 0.00cvss epss 0.01

    Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

  • CVE-1999-0203Aug 17, 1995
    risk 0.00cvss epss 0.02

    In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.

  • CVE-1999-0145Sep 30, 1993
    risk 0.00cvss epss 0.01

    Sendmail WIZ command enabled, allowing root access.

  • CVE-1999-0095Oct 1, 1988
    risk 0.00cvss epss 0.16

    The debug command in Sendmail is enabled, allowing attackers to execute commands as root.