Vulnerabilities (CVE)

Filtered by vendor Eric Allman Subscribe
Total 15 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-1999-0130 7 Bsdi, Caldera, Eric Allman and 4 more 7 Bsd Os, Network Desktop, Sendmail and 4 more 2023-12-10 7.2 HIGH N/A
Local users can start Sendmail in daemon mode and gain root privileges.
CVE-1999-0163 1 Eric Allman 1 Sendmail 2023-12-10 7.2 HIGH N/A
In older versions of Sendmail, an attacker could use a pipe character to execute root commands.
CVE-1999-0095 1 Eric Allman 1 Sendmail 2023-12-10 10.0 HIGH N/A
The debug command in Sendmail is enabled, allowing attackers to execute commands as root.
CVE-2000-0319 1 Eric Allman 1 Sendmail 2023-12-10 5.0 MEDIUM N/A
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
CVE-1999-0057 5 Eric Allman, Freebsd, Hp and 2 more 7 Vacation, Freebsd, Hp-ux and 4 more 2023-12-10 7.5 HIGH N/A
Vacation program allows command execution by remote users through a sendmail command.
CVE-1999-0129 7 Bsdi, Eric Allman, Freebsd and 4 more 9 Bsd Os, Sendmail, Freebsd and 6 more 2023-12-10 4.6 MEDIUM N/A
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
CVE-1999-0131 8 Bsdi, Digital, Eric Allman and 5 more 9 Bsd Os, Osf 1, Sendmail and 6 more 2023-12-10 7.2 HIGH N/A
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
CVE-1999-0205 1 Eric Allman 1 Sendmail 2023-12-10 5.0 MEDIUM N/A
Denial of service in Sendmail 8.6.11 and 8.6.12.
CVE-1999-0204 1 Eric Allman 1 Sendmail 2023-12-10 10.0 HIGH N/A
Sendmail 8.6.9 allows remote attackers to execute root commands, using ident.
CVE-1999-0047 3 Bsdi, Caldera, Eric Allman 3 Bsd Os, Openlinux, Sendmail 2023-12-10 10.0 HIGH N/A
MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4.
CVE-1999-0145 1 Eric Allman 1 Sendmail 2023-12-10 7.2 HIGH N/A
Sendmail WIZ command enabled, allowing root access.
CVE-1999-0203 1 Eric Allman 1 Sendmail 2023-12-10 10.0 HIGH N/A
In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.
CVE-1999-0976 1 Eric Allman 1 Sendmail 2023-12-10 2.1 LOW N/A
Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail.
CVE-1999-0393 1 Eric Allman 1 Sendmail 2023-12-10 5.0 MEDIUM N/A
Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers.
CVE-1999-0206 1 Eric Allman 1 Sendmail 2023-12-10 10.0 HIGH N/A
MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.