Eric Allman: >> Sendmail >> 8.8.2 Security Vulnerabilities
mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n.
CVSS Score
5.0
EPSS Score
0.007
Published
2000-04-23
Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file.
CVSS Score
4.6
EPSS Score
0.001
Published
1996-12-03
Local users can start Sendmail in daemon mode and gain root privileges.
CVSS Score
7.2
EPSS Score
0.009
Published
1996-11-16