CVE-2014-3956

LOW
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.

References

ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTES

http://advisories.mageia.org/MGASA-2014-0270.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.html

http://lists.opensuse.org/opensuse-updates/2014-06/msg00032.html

http://lists.opensuse.org/opensuse-updates/2014-06/msg00033.html

http://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.html

http://secunia.com/advisories/57455

http://secunia.com/advisories/58628

http://security.gentoo.org/glsa/glsa-201412-32.xml

http://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A11.sendmail.asc

http://www.mandriva.com/security/advisories?name=MDVSA-2014:147

http://www.mandriva.com/security/advisories?name=MDVSA-2015:128

http://www.securityfocus.com/bid/67791

http://www.securitytracker.com/id/1030331

http://www.sendmail.com/sm/open_source/download/8.14.9/

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.728644

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05216368

Details

Source: MITRE

Published: 2014-06-04

Updated: 2017-12-29

Type: CWE-200

Risk Information

CVSS v2

Base Score: 1.9

Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.4

Severity: LOW

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:freebsd:freebsd:*:-:*:*:*:*:*:* versions up to 9.2 (inclusive)

Configuration 2

OR

cpe:2.3:a:hp:hpux:*:*:*:*:*:*:*:* versions up to b.11.31 (inclusive)

Configuration 3

OR

cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:sendmail:sendmail:8.6.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.7.6:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.7.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.7.8:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.7.9:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.7.10:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.8.8:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.9.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.9.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.9.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.9.3:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.10:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.10.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.10.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.10.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.3:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.4:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.5:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.6:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.11.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.3:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.4:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.5:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.6:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.8:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.9:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.10:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.12.11:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.3:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.4:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.5:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.6:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.13.8:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.0:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.1:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.2:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.3:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.4:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.5:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.6:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:8.14.7:*:*:*:*:*:*:*

cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:* versions up to 8.14.8 (inclusive)

Tenable Plugins

View all (20 total)

IDNameProductFamilySeverity
132196EulerOS 2.0 SP3 : sendmail (EulerOS-SA-2019-2661)NessusHuawei Local Security Checks
low
131823EulerOS 2.0 SP5 : sendmail (EulerOS-SA-2019-2549)NessusHuawei Local Security Checks
low
131594EulerOS 2.0 SP2 : sendmail (EulerOS-SA-2019-2440)NessusHuawei Local Security Checks
low
108897AIX 5.3 TL 12 : sendmail (IJ03273)NessusAIX Local Security Checks
low
108896AIX 7.1 TL 5 : sendmail (IJ03121)NessusAIX Local Security Checks
low
108895AIX 7.2 TL 2 : sendmail (IJ02920)NessusAIX Local Security Checks
low
108894AIX 7.2 TL 1 : sendmail (IJ02919)NessusAIX Local Security Checks
low
108893AIX 7.2 TL 0 : sendmail (IJ02918)NessusAIX Local Security Checks
low
108892AIX 7.1 TL 4 : sendmail (IJ02917)NessusAIX Local Security Checks
low
108891AIX 6.1 TL 9 : sendmail (IJ02915)NessusAIX Local Security Checks
low
82381Mandriva Linux Security Advisory : sendmail (MDVSA-2015:128)NessusMandriva Local Security Checks
low
80770Oracle Solaris Third-Party Patch Update : sendmail (cve_2014_3956_information_disclosure)NessusSolaris Local Security Checks
low
80209GLSA-201412-32 : sendmail: Information disclosureNessusGentoo Local Security Checks
low
76954Mandriva Linux Security Advisory : sendmail (MDVSA-2014:147)NessusMandriva Local Security Checks
low
76372SuSE 11.3 Security Update : sendmail (SAT Patch Number 9345)NessusSuSE Local Security Checks
low
76151Fedora 19 : sendmail-8.14.7-2.fc19 (2014-7095)NessusFedora Local Security Checks
low
76104openSUSE Security Update : sendmail (openSUSE-SU-2014:0804-1)NessusSuSE Local Security Checks
low
74503Fedora 20 : sendmail-8.14.8-2.fc20 (2014-7093)NessusFedora Local Security Checks
low
74332Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : sendmail (SSA:2014-156-04)NessusSlackware Local Security Checks
low
74289Sendmail < 8.14.9 close-on-exec SMTP Connection ManipulationNessusSMTP problems
low