Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0058

Overview

Vulnerability Score 7.6 7.6
CVE Id CVE-2006-0058
Last Modified 07 Mar 2011 09:29:14
Published 22 Mar 2006 03:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2006-0058

Summary

Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations.

Vulnerable Systems

Application

  • Sendmail 8.13.0

  • Sendmail 8.13.1

  • Sendmail 8.13.2

  • Sendmail 8.13.3

  • Sendmail 8.13.4

  • Sendmail 8.13.5


References

CERT - TA06-081A

CERT-VN - VU#834865

REDHAT - RHSA-2006:0265

REDHAT - RHSA-2006:0264

VUPEN - ADV-2006-2490

VUPEN - ADV-2006-2189

VUPEN - ADV-2006-1529

VUPEN - ADV-2006-1157

VUPEN - ADV-2006-1139

VUPEN - ADV-2006-1072

VUPEN - ADV-2006-1068

VUPEN - ADV-2006-1051

VUPEN - ADV-2006-1049

CONFIRM - http://www.sendmail.com/company/advisory/index.shtml

BUGTRAQ - 20060322 sendmail vuln advisories (CVE-2006-0058)

OPENPKG - OpenPKG-SA-2006.007

ISS - 20060322 Sendmail Remote Signal Handling Vulnerability

GENTOO - GLSA-200603-21

DEBIAN - DSA-1015

SUNALERT - 200494

SECUNIA - 19367

SECUNIA - 19363

SECUNIA - 19342

HP - HPSBTU02116

HP - HPSBUX02108

XF - smtp-timeout-bo(24584)

CONFIRM - http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751

CONFIRM - http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688

BID - 17192

FEDORA - FLSA:186277

FEDORA - FEDORA-2006-193

FEDORA - FEDORA-2006-194

OSVDB - 24037

OPENBSD - [3.8] 006: SECURITY FIX: March 25, 2006

SUSE - SUSE-SA:2006:017

MANDRIVA - MDKSA-2006:058

CONFIRM - http://www.f-secure.com/security/fsc-2006-2.shtml

CIAC - Q-151

AIXAPAR - IY82994

AIXAPAR - IY82993

AIXAPAR - IY82992

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm

SUNALERT - 102324

SUNALERT - 102262

SLACKWARE - SSA:2006-081-01

SECTRACK - 1015801

SREASON - 743

SREASON - 612

SECUNIA - 20723

SECUNIA - 20243

SECUNIA - 19774

SECUNIA - 19676

SECUNIA - 19533

SECUNIA - 19532

SECUNIA - 19466

SECUNIA - 19450

SECUNIA - 19407

SECUNIA - 19404

SECUNIA - 19394

SECUNIA - 19368

SECUNIA - 19361

SECUNIA - 19360

SECUNIA - 19356

SECUNIA - 19349

SECUNIA - 19346

SECUNIA - 19345

SGI - 20060401-01-U

SGI - 20060302-01-P

SCO - SCOSA-2006.24

NETBSD - NetBSD-SA2006-010

FREEBSD - FreeBSD-SA-06:13

HP - SSRT061135

HP - SSRT061133


Last Updated: 27 May 2016 10:42:34