Oval Definition:oval:org.mitre.oval:def:603
Revision Date:2010-09-20Version:22
Title:Sendmail BO in prescan Function
Description:The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2003-0694
Platform(s):Red Hat Linux 9
Product(s):Sendmail
Definition Synopsis
  • Software section
  • Red Hat 9 is installed
  • AND ix86 architecture
  • AND sendmail version is less than 8.12.8-9.90
  • AND Configuration section
  • Vulnerable Config
  • sendmail is Set-UID
  • sendmail is Set-UID
  • AND sendmail is Set-UID
  • sendmail is Set-UID
  • OR sendmail is Set-UID
  • OR sendmail is Set-GID
  • sendmail is Set-GID
  • AND sendmail is Set-UID
  • OR sendmail listening
    • BACK