Sendmail < 8.12.10 prescan() Function Remote Overflow

This script is Copyright (C) 2003-2015 Tenable Network Security, Inc.

Synopsis :

The remote mail server is prone to multiple buffer overflow attacks.

Description :

According to its version number, the remote sendmail server is
between 5.79 to 8.12.9. Such versions are reportedly vulnerable to
remote buffer overflow attacks, one in the 'prescan()' function and
another involving its ruleset processing. A remote user may be able
to leverage these issues to gain root privileges.

See also :

Solution :

Upgrade to Sendmail version 8.12.10 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false

Family: SMTP problems

Nessus Plugin ID: 11838 ()

Bugtraq ID: 8641

CVE ID: CVE-2003-0681