Sendmail < 8.12.10 prescan() Function Remote Overflow

This script is Copyright (C) 2003-2014 Tenable Network Security, Inc.


Synopsis :

The remote mail server is prone to multiple buffer overflow attacks.

Description :

According to its version number, the remote sendmail server is
between 5.79 to 8.12.9. Such versions are reportedly vulnerable to
remote buffer overflow attacks, one in the 'prescan()' function and
another involving its ruleset processing. A remote user may be able
to leverage these issues to gain root privileges.

See also :

http://archives.neohapsis.com/archives/fulldisclosure/2003-q3/4119.html

Solution :

Upgrade to Sendmail version 8.12.10 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 7.8
(CVSS2#E:POC/RL:OF/RC:C)
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 11838 ()

Bugtraq ID: 8641
8649

CVE ID: CVE-2003-0681
CVE-2003-0694