Vulnerability Details CVE-1999-1309
Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 31.7%
CVSS Severity
CVSS v2 Score 7.2
References
- http://www.cert.org/advisories/CA-94.12.sendmail.vulnerabilities
- http://www.dataguard.no/bugtraq/1994_1/0040.html
- http://www.dataguard.no/bugtraq/1994_1/0042.html
- http://www.dataguard.no/bugtraq/1994_1/0043.html
- http://www.dataguard.no/bugtraq/1994_1/0048.html
- http://www.dataguard.no/bugtraq/1994_1/0078.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7155
- http://www.cert.org/advisories/CA-94.12.sendmail.vulnerabilities
- http://www.dataguard.no/bugtraq/1994_1/0040.html
- http://www.dataguard.no/bugtraq/1994_1/0042.html
- http://www.dataguard.no/bugtraq/1994_1/0043.html
- http://www.dataguard.no/bugtraq/1994_1/0048.html
- http://www.dataguard.no/bugtraq/1994_1/0078.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7155
Products affected by CVE-1999-1309
-
cpe:2.3:a:sendmail:sendmail:-
-
cpe:2.3:a:sendmail:sendmail:2.6
-
cpe:2.3:a:sendmail:sendmail:2.6.1
-
cpe:2.3:a:sendmail:sendmail:2.6.2
-
cpe:2.3:a:sendmail:sendmail:3.0
-
cpe:2.3:a:sendmail:sendmail:3.0.1
-
cpe:2.3:a:sendmail:sendmail:3.0.2
-
cpe:2.3:a:sendmail:sendmail:3.0.3
-
cpe:2.3:a:sendmail:sendmail:4.1
-
cpe:2.3:a:sendmail:sendmail:8.6.7