CVE-1999-0131

3 documents3 sources
Severity
7.2HIGH
EPSS
0.1%
top 73.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Bsdi BSD OSDigital OSF 1Eric Allman Sendmail+6 more
Timeline
PublishedSep 11
Latest updateApr 30

Description

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages8 packages

NVDeric_allman/sendmail6 versions+5
NVDibm/aix3.2, 4.1, 4.2+2
NVDhp/hp-ux10.01, 10.10, 10.20+2
NVDbsdi/bsd_os2.1
NVDredhat/linux3.0.3

Also affects: Freebsd 2.1.5

🔴Vulnerability Details

2
GHSA
GHSA-gwrm-3497-38vq: Buffer overflow and denial of service in Sendmail 82022-04-30
CVEList
CVE-1999-0131: Buffer overflow and denial of service in Sendmail 81999-09-29