Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0681

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0681
Last Modified 10 Sep 2008 03:20:07
Published 06 Oct 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0681

Summary

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.

Vulnerable Systems

Operating System

  • Apple Mac Os X 10.2

  • Apple Mac Os X 10.2.1

  • Apple Mac Os X 10.2.2

  • Apple Mac Os X 10.2.3

  • Apple Mac Os X 10.2.4

  • Apple Mac Os X 10.2.5

  • Apple Mac Os X 10.2.6

  • Apple Mac Os X Server 10.2

  • Apple Mac Os X Server 10.2.1

  • Apple Mac Os X Server 10.2.2

  • Apple Mac Os X Server 10.2.3

  • Apple Mac Os X Server 10.2.4

  • Apple Mac Os X Server 10.2.5

  • Apple Mac Os X Server 10.2.6

  • Gentoo Linux 0.5

  • Gentoo Linux 0.7

  • Gentoo Linux 1.1a

  • Gentoo Linux 1.2

  • Gentoo Linux 1.4

  • Hp-ux 11.0.4

  • Hp-ux 11.00

  • Hp-ux 11.11

  • Hp-ux 11.22

  • Ibm Aix 4.3.3

  • Ibm Aix 5.1

  • Ibm Aix 5.2

  • Netbsd 1.4.3

  • Netbsd 1.5

  • Netbsd 1.5.1

  • Netbsd 1.5.2

  • Netbsd 1.5.3

  • Netbsd 1.6

  • Netbsd 1.6.1

  • Openbsd 3.2

  • Openbsd 3.3

  • Turbolinux Advanced Server 6.0

  • Turbolinux Server 6.1

  • Turbolinux Server 6.5

  • Turbolinux Server 7.0

  • Turbolinux Server 8.0

  • Turbolinux Workstation 6.0

  • Turbolinux Workstation 7.0

  • Turbolinux Workstation 8.0

Application

  • Sendmail 2.6

  • Sendmail 2.6.1

  • Sendmail 2.6.2

  • Sendmail 3.0

  • Sendmail 3.0.1

  • Sendmail 3.0.2

  • Sendmail 3.0.3

  • Sendmail 8.10

  • Sendmail 8.10.1

  • Sendmail 8.10.2

  • Sendmail 8.11.0

  • Sendmail 8.11.1

  • Sendmail 8.11.2

  • Sendmail 8.11.3

  • Sendmail 8.11.4

  • Sendmail 8.11.5

  • Sendmail 8.11.6

  • Sendmail 8.12

  • Sendmail 8.12.0

  • Sendmail 8.12.1

  • Sendmail 8.12.2

  • Sendmail 8.12.3

  • Sendmail 8.12.4

  • Sendmail 8.12.5

  • Sendmail 8.12.6

  • Sendmail 8.12.7

  • Sendmail 8.12.8

  • Sendmail 8.12.9

  • Sendmail 8.8.8

  • Sendmail 8.9.0

  • Sendmail 8.9.1

  • Sendmail 8.9.2

  • Sendmail 8.9.3

  • Sendmail Advanced Message Server 1.2

  • Sendmail Advanced Message Server 1.3

  • Sendmail Pro 8.9.2

  • Sendmail Pro 8.9.3

  • Sendmail Switch 2.1

  • Sendmail Switch 2.1.1

  • Sendmail Switch 2.1.2

  • Sendmail Switch 2.1.3

  • Sendmail Switch 2.1.4

  • Sendmail Switch 2.1.5

  • Sendmail Switch 2.2

  • Sendmail Switch 2.2.1

  • Sendmail Switch 2.2.2

  • Sendmail Switch 2.2.3

  • Sendmail Switch 2.2.4

  • Sendmail Switch 2.2.5

  • Sendmail Switch 3.0

  • Sendmail Switch 3.0.1

  • Sendmail Switch 3.0.2

  • Sendmail Switch 3.0.3


References

CERT-VN - VU#108964

CONFIRM - http://www.sendmail.org/8.12.10.html

XF - sendmail-ruleset-parsing-bo(13216)

BID - 8649

REDHAT - RHSA-2003:283

DEBIAN - DSA-384

BUGTRAQ - 20030919 [OpenPKG-SA-2003.041] OpenPKG Security Advisory (sendmail)

BUGTRAQ - 20030917 GLSA: sendmail (200309-13)

CONECTIVA - CLA-2003:742

MANDRAKE - MDKSA-2003:092


Last Updated: 27 May 2016 10:38:00