CVE-2001-0623

sendfiled - Privilege Escalation

Title source: llm

Description

sendfiled, as included with Simple Asynchronous File Transfer (SAFT), on various Linux systems does not properly drop privileges when sending notification emails, which allows local attackers to gain privileges.

Exploits (2)

exploitdb WORKING POC VERIFIED

by psheep · bashlocallinux

https://www.exploit-db.com/exploits/20795

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Cade Cairns · bashlocallinux

https://www.exploit-db.com/exploits/20798

View Code ZIP pw:eip

References (3)

[Patch, Vendor Advisory] http://www.debian.org/security/2001/dsa-052

[Third Party Advisory] http://www.debian.org/security/2001/dsa-050

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/6430

Scores

EPSS 0.0014

EPSS Percentile 34.2%

Details

Status published

Products (1)

sendfile/sendfile

Published Aug 02, 2001

Tracked Since Feb 18, 2026