CVE-2003-0161 : Detail

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337.

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 24

Publication date : 2003-04-29 22h00 +00:00
Author : bysin
EDB Verified : Yes

Exploit Database EDB-ID : 22442

Publication date : 2003-03-28 23h00 +00:00
Author : sorbo
EDB Verified : Yes

Products Mentioned

Configuraton 0

Sendmail>>Sendmail >> Version 2.6

Sendmail>>Sendmail >> Version 2.6.1

Sendmail>>Sendmail >> Version 2.6.2

Sendmail>>Sendmail >> Version 3.0

Sendmail>>Sendmail >> Version 3.0.1

Sendmail>>Sendmail >> Version 3.0.2

Sendmail>>Sendmail >> Version 3.0.3

Sendmail>>Sendmail >> Version 8.9.0

Sendmail>>Sendmail >> Version 8.9.1

Sendmail>>Sendmail >> Version 8.9.2

Sendmail>>Sendmail >> Version 8.9.3

Sendmail>>Sendmail >> Version 8.10

Sendmail>>Sendmail >> Version 8.10.1

Sendmail>>Sendmail >> Version 8.10.2

Sendmail>>Sendmail >> Version 8.11.0

Sendmail>>Sendmail >> Version 8.11.1

Sendmail>>Sendmail >> Version 8.11.2

Sendmail>>Sendmail >> Version 8.11.3

Sendmail>>Sendmail >> Version 8.11.4

Sendmail>>Sendmail >> Version 8.11.5

Sendmail>>Sendmail >> Version 8.11.6

Sendmail>>Sendmail >> Version 8.12

Sendmail>>Sendmail >> Version 8.12

Sendmail>>Sendmail >> Version 8.12

Sendmail>>Sendmail >> Version 8.12

Sendmail>>Sendmail >> Version 8.12

Sendmail>>Sendmail >> Version 8.12.0

Sendmail>>Sendmail >> Version 8.12.1

Sendmail>>Sendmail >> Version 8.12.2

Sendmail>>Sendmail >> Version 8.12.3

Sendmail>>Sendmail >> Version 8.12.4

Sendmail>>Sendmail >> Version 8.12.5

Sendmail>>Sendmail >> Version 8.12.6

Sendmail>>Sendmail >> Version 8.12.7

Sendmail>>Sendmail >> Version 8.12.8

Sendmail>>Sendmail_switch >> Version 2.1

Sendmail>>Sendmail_switch >> Version 2.1.1

Sendmail>>Sendmail_switch >> Version 2.1.2

Sendmail>>Sendmail_switch >> Version 2.1.3

Sendmail>>Sendmail_switch >> Version 2.1.4

Sendmail>>Sendmail_switch >> Version 2.1.5

Sendmail>>Sendmail_switch >> Version 2.2

Sendmail>>Sendmail_switch >> Version 2.2.1

Sendmail>>Sendmail_switch >> Version 2.2.2

Sendmail>>Sendmail_switch >> Version 2.2.3

Sendmail>>Sendmail_switch >> Version 2.2.4

Sendmail>>Sendmail_switch >> Version 2.2.5

Sendmail>>Sendmail_switch >> Version 3.0

Sendmail>>Sendmail_switch >> Version 3.0.1

Sendmail>>Sendmail_switch >> Version 3.0.2

Sendmail>>Sendmail_switch >> Version 3.0.3

Configuraton 0

Compaq>>Tru64 >> Version 4.0b

Compaq>>Tru64 >> Version 4.0d

Compaq>>Tru64 >> Version 4.0d_pk9_bl17

Compaq>>Tru64 >> Version 4.0f

Compaq>>Tru64 >> Version 4.0f_pk6_bl17

Compaq>>Tru64 >> Version 4.0f_pk7_bl18

Compaq>>Tru64 >> Version 4.0g

Compaq>>Tru64 >> Version 4.0g_pk3_bl17

Compaq>>Tru64 >> Version 5.0

Compaq>>Tru64 >> Version 5.0_pk4_bl17

Compaq>>Tru64 >> Version 5.0_pk4_bl18

Compaq>>Tru64 >> Version 5.0a

Compaq>>Tru64 >> Version 5.0a_pk3_bl17

Compaq>>Tru64 >> Version 5.0f

Compaq>>Tru64 >> Version 5.1

Compaq>>Tru64 >> Version 5.1_pk3_bl17

Compaq>>Tru64 >> Version 5.1_pk4_bl18

Compaq>>Tru64 >> Version 5.1_pk5_bl19

Compaq>>Tru64 >> Version 5.1_pk6_bl20

Compaq>>Tru64 >> Version 5.1a

Compaq>>Tru64 >> Version 5.1a_pk1_bl1

Compaq>>Tru64 >> Version 5.1a_pk2_bl2

Compaq>>Tru64 >> Version 5.1a_pk3_bl3

Compaq>>Tru64 >> Version 5.1b

Compaq>>Tru64 >> Version 5.1b_pk1_bl1

Hp>>Hp-ux >> Version 10.00

Hp>>Hp-ux >> Version 10.01

Hp>>Hp-ux >> Version 10.08

Hp>>Hp-ux >> Version 10.09

Hp>>Hp-ux >> Version 10.10

Hp>>Hp-ux >> Version 10.16

Hp>>Hp-ux >> Version 10.20

Hp>>Hp-ux >> Version 10.24

Hp>>Hp-ux >> Version 10.26

Hp>>Hp-ux >> Version 10.30

Hp>>Hp-ux >> Version 10.34

Hp>>Hp-ux >> Version 11.00

Hp>>Hp-ux >> Version 11.0.4

Hp>>Hp-ux >> Version 11.11

Hp>>Hp-ux >> Version 11.20

Hp>>Hp-ux >> Version 11.22

Hp>>Hp-ux_series_700 >> Version 10.20

Hp>>Hp-ux_series_800 >> Version 10.20

Hp>>Sis >> Version *

Sun>>Solaris >> Version 2.4

Sun>>Solaris >> Version 2.5

Sun>>Solaris >> Version 2.5.1

Sun>>Solaris >> Version 2.5.1

Sun>>Solaris >> Version 2.6

Sun>>Solaris >> Version 7.0

Sun>>Solaris >> Version 8.0

Sun>>Solaris >> Version 9.0

Sun>>Solaris >> Version 9.0

Sun>>Solaris >> Version 9.0

Sun>>Sunos >> Version -

Sun>>Sunos >> Version 5.4

Sun>>Sunos >> Version 5.5

Sun>>Sunos >> Version 5.5.1

Sun>>Sunos >> Version 5.7

Sun>>Sunos >> Version 5.8

References