Sendmail < 8.12.10 prescan() Function Remote Overflow

This script is Copyright (C) 2003-2017 Tenable Network Security, Inc.

Synopsis :

The remote mail server is prone to multiple buffer overflow attacks.

Description :

According to its version number, the remote sendmail server is
between 5.79 to 8.12.9. Such versions are reportedly vulnerable to
remote buffer overflow attacks, one in the 'prescan()' function and
another involving its ruleset processing. A remote user may be able
to leverage these issues to gain root privileges.

See also :

Solution :

Upgrade to Sendmail version 8.12.10 or later.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 9.5
Public Exploit Available : true

Family: SMTP problems

Nessus Plugin ID: 11838 ()

Bugtraq ID: 8641

CVE ID: CVE-2003-0681

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now