CVE-2014-3956

Published: Jun 4, 2014Modified: May 6, 2026

1.9

Vector

AV:L/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 3.4 / Impact: 2.9

Source: NVD

Description

The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.

Affected (56)

Products: Freebsd: Freebsd · Hp: Hpux · Fedoraproject: Fedora · +1 more

Show all products

Freebsd: Freebsd · Hp: Hpux · Fedoraproject: Fedora · Sendmail: Sendmail

1 product

1 product

1 product

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Freebsd Freebsd	Up to 9.2

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Hp Hpux	Up to b.11.31

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 20

Configuration D

53 vulnerable

Vulnerable Software	Affected Versions
Sendmail Sendmail	Up to 8.14.8
Sendmail Sendmail	Version 8.10.0
Sendmail Sendmail	Version 8.10.1
Sendmail Sendmail	Version 8.10.2
Sendmail Sendmail	Version 8.10
Sendmail Sendmail	Version 8.11.0
Sendmail Sendmail	Version 8.11.1
Sendmail Sendmail	Version 8.11.2
Sendmail Sendmail	Version 8.11.3
Sendmail Sendmail	Version 8.11.4
Sendmail Sendmail	Version 8.11.5
Sendmail Sendmail	Version 8.11.6
Sendmail Sendmail	Version 8.11.7
Sendmail Sendmail	Version 8.12.0
Sendmail Sendmail	Version 8.12.10
Sendmail Sendmail	Version 8.12.11
Sendmail Sendmail	Version 8.12.1
Sendmail Sendmail	Version 8.12.2
Sendmail Sendmail	Version 8.12.3
Sendmail Sendmail	Version 8.12.4
Sendmail Sendmail	Version 8.12.5
Sendmail Sendmail	Version 8.12.6
Sendmail Sendmail	Version 8.12.7
Sendmail Sendmail	Version 8.12.8
Sendmail Sendmail	Version 8.12.9
Sendmail Sendmail	Version 8.13.0
Sendmail Sendmail	Version 8.13.1
Sendmail Sendmail	Version 8.13.2
Sendmail Sendmail	Version 8.13.3
Sendmail Sendmail	Version 8.13.4
Sendmail Sendmail	Version 8.13.5
Sendmail Sendmail	Version 8.13.6
Sendmail Sendmail	Version 8.13.7
Sendmail Sendmail	Version 8.13.8
Sendmail Sendmail	Version 8.14.0
Sendmail Sendmail	Version 8.14.1
Sendmail Sendmail	Version 8.14.2
Sendmail Sendmail	Version 8.14.3
Sendmail Sendmail	Version 8.14.4
Sendmail Sendmail	Version 8.14.5
Sendmail Sendmail	Version 8.14.6
Sendmail Sendmail	Version 8.14.7
Sendmail Sendmail	Version 8.6.7
Sendmail Sendmail	Version 8.7.10
Sendmail Sendmail	Version 8.7.6
Sendmail Sendmail	Version 8.7.7
Sendmail Sendmail	Version 8.7.8
Sendmail Sendmail	Version 8.7.9
Sendmail Sendmail	Version 8.8.8
Sendmail Sendmail	Version 8.9.0
Sendmail Sendmail	Version 8.9.1
Sendmail Sendmail	Version 8.9.2
Sendmail Sendmail	Version 8.9.3

Related CWEs

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (34)

ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTES (unsafe URL)

Source: cve@mitre.org

Vendor Advisory

http://advisories.mageia.org/MGASA-2014-0270.html

Source: cve@mitre.org

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.html

Source: cve@mitre.org

Third Party Advisory

http://lists.opensuse.org/opensuse-updates/2014-06/msg00032.html

Source: cve@mitre.org

http://lists.opensuse.org/opensuse-updates/2014-06/msg00033.html

Source: cve@mitre.org

http://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.html

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://secunia.com/advisories/57455

Source: cve@mitre.org

http://secunia.com/advisories/58628

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-201412-32.xml

Source: cve@mitre.org

http://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A11.sendmail.asc

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2014:147

Source: cve@mitre.org

http://www.mandriva.com/security/advisories?name=MDVSA-2015:128

Source: cve@mitre.org

http://www.securityfocus.com/bid/67791

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030331

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.sendmail.com/sm/open_source/download/8.14.9/

Source: cve@mitre.org

PatchVendor Advisory

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.728644

Source: cve@mitre.org

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05216368

Source: cve@mitre.org

Third Party Advisory

ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTES (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://advisories.mageia.org/MGASA-2014-0270.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

http://lists.opensuse.org/opensuse-updates/2014-06/msg00032.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2014-06/msg00033.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://secunia.com/advisories/57455

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/58628

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-201412-32.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.freebsd.org/security/advisories/FreeBSD-SA-14%3A11.sendmail.asc

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2014:147

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDVSA-2015:128

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/67791

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1030331

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.sendmail.com/sm/open_source/download/8.14.9/

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2014&m=slackware-security.728644

Source: af854a3a-2127-422b-91ae-364da2661108

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05216368

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.