CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0688

The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect data.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.8%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2003-0688

Redhat » Sendmail » Version: 8.12.5-7

cpe:2.3:a:redhat:sendmail:8.12.5-7
Redhat » Sendmail » Version: 8.12.8-4

cpe:2.3:a:redhat:sendmail:8.12.8-4
Sendmail » Sendmail » Version: 8.12.1

cpe:2.3:a:sendmail:sendmail:8.12.1
Sendmail » Sendmail » Version: 8.12.2

cpe:2.3:a:sendmail:sendmail:8.12.2
Sendmail » Sendmail » Version: 8.12.3

cpe:2.3:a:sendmail:sendmail:8.12.3
Sendmail » Sendmail » Version: 8.12.4

cpe:2.3:a:sendmail:sendmail:8.12.4
Sendmail » Sendmail » Version: 8.12.5

cpe:2.3:a:sendmail:sendmail:8.12.5
Sendmail » Sendmail » Version: 8.12.6

cpe:2.3:a:sendmail:sendmail:8.12.6
Sendmail » Sendmail » Version: 8.12.7

cpe:2.3:a:sendmail:sendmail:8.12.7
Sendmail » Sendmail » Version: 8.12.8

cpe:2.3:a:sendmail:sendmail:8.12.8
Compaq » Tru64 » Version: 5.0a

cpe:2.3:o:compaq:tru64:5.0a
Compaq » Tru64 » Version: 5.1

cpe:2.3:o:compaq:tru64:5.1
Freebsd » Freebsd » Version: 4.6

cpe:2.3:o:freebsd:freebsd:4.6
Freebsd » Freebsd » Version: 4.7

cpe:2.3:o:freebsd:freebsd:4.7
Freebsd » Freebsd » Version: 4.8

cpe:2.3:o:freebsd:freebsd:4.8
Freebsd » Freebsd » Version: 5.0

cpe:2.3:o:freebsd:freebsd:5.0
Openbsd » Openbsd » Version: 3.2

cpe:2.3:o:openbsd:openbsd:3.2
Sgi » Irix » Version: 6.5.19

cpe:2.3:o:sgi:irix:6.5.19
Sgi » Irix » Version: 6.5.20

cpe:2.3:o:sgi:irix:6.5.20
Sgi » Irix » Version: 6.5.21

cpe:2.3:o:sgi:irix:6.5.21

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0688

Products

Pricing

Contact Us