Vulnerability Details CVE-1999-1109
Sendmail before 8.10.0 allows remote attackers to cause a denial of service by sending a series of ETRN commands then disconnecting from the server, while Sendmail continues to process the commands after the connection has been terminated.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.077
EPSS Ranking 91.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=94632241202626&w=2
- http://marc.info/?l=bugtraq&m=94780566911948&w=2
- http://www.iss.net/security_center/static/7760.php
- http://www.securityfocus.com/bid/904
- http://marc.info/?l=bugtraq&m=94632241202626&w=2
- http://marc.info/?l=bugtraq&m=94780566911948&w=2
- http://www.iss.net/security_center/static/7760.php
- http://www.securityfocus.com/bid/904
Products affected by CVE-1999-1109
-
cpe:2.3:a:sendmail:sendmail:-
-
cpe:2.3:a:sendmail:sendmail:2.6
-
cpe:2.3:a:sendmail:sendmail:2.6.1
-
cpe:2.3:a:sendmail:sendmail:2.6.2
-
cpe:2.3:a:sendmail:sendmail:3.0
-
cpe:2.3:a:sendmail:sendmail:3.0.1
-
cpe:2.3:a:sendmail:sendmail:3.0.2
-
cpe:2.3:a:sendmail:sendmail:3.0.3
-
cpe:2.3:a:sendmail:sendmail:4.1
-
cpe:2.3:a:sendmail:sendmail:8.10
-
cpe:2.3:a:sendmail:sendmail:8.10.0
-
cpe:2.3:a:sendmail:sendmail:8.6.7
-
cpe:2.3:a:sendmail:sendmail:8.7.10
-
cpe:2.3:a:sendmail:sendmail:8.7.6
-
cpe:2.3:a:sendmail:sendmail:8.7.7
-
cpe:2.3:a:sendmail:sendmail:8.7.8
-
cpe:2.3:a:sendmail:sendmail:8.7.9
-
cpe:2.3:a:sendmail:sendmail:8.8.8
-
cpe:2.3:a:sendmail:sendmail:8.9.0
-
cpe:2.3:a:sendmail:sendmail:8.9.1
-
cpe:2.3:a:sendmail:sendmail:8.9.2
-
cpe:2.3:a:sendmail:sendmail:8.9.3