CVE-1999-1580

Published: Aug 23, 1995Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

Affected (10)

Products: Sendmail: Sendmail · Sun: Sunos

1 product

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Sendmail Sendmail	Version 5.59
Sendmail Sendmail	Version 5.61
Sendmail Sendmail	Version 5.65

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Sun Sunos	Version 4.1.1
Sun Sunos	Version 4.1.2
Sun Sunos	Version 4.1.3
Sun Sunos	Version 4.1.3c
Sun Sunos	Version 4.1.3u1
Sun Sunos	Version 4.1.4
Sun Sunos	Version 4.1.4jl

References (10)

http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html

Source: cve@mitre.org

Exploit

http://www.auscert.org.au/render.html?it=1853&cid=1978

Source: cve@mitre.org

Vendor Advisory

http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.kb.cert.org/vuls/id/3278

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/7829

Source: cve@mitre.org

http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.auscert.org.au/render.html?it=1853&cid=1978

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.kb.cert.org/vuls/id/3278

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/7829

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.