Sendmail Switch

sendmail_switch

Vendor: Sendmail • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2003-0694 11Apple CompaqFreebsd+8 more 18Advanced Message Server AixFreebsd+15 more Apr 16, 2026 Oct 6, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 The prescan function in Sendmail 8.12.9 allows remote attackers to execute arbitrary code via buffer overflow attacks, as demonstrated using the parseaddr function in parseaddr.c.
CVE-2003-0681 8Apple GentooHp+5 more 14Advanced Message Server AixHp Ux+11 more Apr 16, 2026 Oct 6, 2003 N/A· v4 N/A· v3 7.5 HIGH· v2 A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
CVE-2003-0161 4Compaq HpSendmail+1 more 9Hp Ux Hp Ux Series 700Hp Ux Series 800+6 more Apr 16, 2026 Apr 2, 2003 N/A· v4 N/A· v3 10.0 HIGH· v2 The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misin...Show more The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337.Show less