Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Sendmail < 8.12.1 RestrictQueueRun Option Local DoS

Low

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote sendmail server may be vulnerable to a queue destruction if a local user runs the command 'sendmail -q -h1000'. A local attacker may use this flaw to force this host to delete e-mails.

Solution

Upgrade to version 8.12.1 or higher.