CVE-1999-1580
Severity:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/08/1995
Last modified:
05/09/2008
Description
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
Impact
Base Score 2.0
7.20
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:sendmail:sendmail:5.59:*:*:*:*:*:*:* | ||
cpe:2.3:a:sendmail:sendmail:5.61:*:*:*:*:*:*:* | ||
cpe:2.3:a:sendmail:sendmail:5.65:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.1:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.2:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.3:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.3c:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.3u1:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.4:*:*:*:*:*:*:* | ||
cpe:2.3:o:sun:sunos:4.1.4jl:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page