Debian Sendmail vulnerabilities

CVE-2002-1165 [MEDIUM] CVE-2002-1165: sendmail - Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, an... Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2) "/" characters, which are not properly filtered or verified. Scope: local bookworm: resolved (fixed in 8.12

CVE-2002-1827 [LOW] CVE-2002-1827: sendmail - Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by... Sendmail 8.9.0 through 8.12.3 allows local users to cause a denial of service by obtaining an exclusive lock on the (1) alias, (2) map, (3) statistics, and (4) pid files. Scope: local bookworm: resolved (fixed in 8.12-4) bullseye: resolved (fixed in 8.12-4) forky: resolved (fixed in 8.12-4) sid: resolved (fixed in 8.12-4) trixie: resolved (fixed in 8.12-4)

CVE-1999-1592 [MEDIUM] CVE-1999-1592: sendmail - Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.... Multiple unspecified vulnerabilities in sendmail 5, as installed on Sun SunOS 4.1.3_U1 and 4.1.4, have unspecified attack vectors and impact. NOTE: this might overlap CVE-1999-0129. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-1999-1580 [HIGH] CVE-1999-1580: sendmail - SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argumen... SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved