CVE-1999-0131

Published: Sep 11, 1996Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

Affected (19)

Products: Eric Allman: Sendmail · Bsdi: Bsd Os · Digital: Osf 1 · +5 more

Show all products

Eric Allman: Sendmail · Bsdi: Bsd Os · Digital: Osf 1 · Freebsd: Freebsd · Hp: Hp Ux · Ibm: Aix · Redhat: Linux · Sco: Internet Faststart, Openserver

1 product

1 product

1 product

1 product

1 product

1 product

1 product

2 products

Internet Faststart

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Eric Allman Sendmail	Version 8.6
Eric Allman Sendmail	Version 8.7.1
Eric Allman Sendmail	Version 8.7.2
Eric Allman Sendmail	Version 8.7.3
Eric Allman Sendmail	Version 8.7.4
Eric Allman Sendmail	Version 8.7.5

Configuration B

13 vulnerable

Vulnerable Software	Affected Versions
Bsdi Bsd Os	Version 2.1
Digital Osf 1	Version 1.3.2
Freebsd Freebsd	Version 2.1.5
Hp Hp Ux	Version 10.01
Hp Hp Ux	Version 10.10
Hp Hp Ux	Version 10.20
Ibm Aix	Version 3.2
Ibm Aix	Version 4.1
Ibm Aix	Version 4.2
Redhat Linux	Version 3.0.3
Sco Internet Faststart	Version 1.0
Sco Openserver	Version 5.0.2
Sco Openserver	Version 5.0

References (2)

http://www.securityfocus.com/bid/717

Source: cve@mitre.org

http://www.securityfocus.com/bid/717

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.