Exploitation Summary
EIP tracks 1 public exploit for CVE-1999-0096. PoCs published by HORKimhab.
AI-analyzed exploit summary The repository contains only a markdown file with a placeholder for CVE-1999-0096, a Sendmail vulnerability where the 'decode' alias could be abused to overwrite sensitive files. No functional exploit code, technical details, or proof-of-concept is provided.
Description
Sendmail decode alias can be used to overwrite sensitive files.
Exploits (1)
github
STUB
by HORKimhab · shellpoc
https://github.com/HORKimhab/poc-cve-collection/tree/main/1999/0xxx/CVE-1999-0096.md
The repository contains only a markdown file with a placeholder for CVE-1999-0096, a Sendmail vulnerability where the 'decode' alias could be abused to overwrite sensitive files. No functional exploit code, technical details, or proof-of-concept is provided.
Classification
Stub 99%
Attack Type
Other
Complexity
Moderate
Reliability
Theoretical
Target:
Sendmail (versions prior to 8.9.3)
No auth needed
Prerequisites:
Sendmail with 'decode' alias enabled · Write access to sensitive files via alias abuse
MITRE ATT&CK
mistral-large-3 · analyzed Jul 14, 2026
Full analysis →
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_sun
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/122&type=0&nav=sec.sba
Scores
EPSS
0.0128
EPSS Percentile
66.8%
Details
Status
published
Products (8)
bsdi/bsd_os
freebsd/freebsd
2.1.5
freebsd/freebsd
2.1.6
freebsd/freebsd
2.1.6.1
sco/internet_faststart
1.0
sco/internet_faststart
1.1
sco/openserver
5.0
sco/openserver
5.0.2
Published
Dec 10, 1996
Tracked Since
Feb 18, 2026