CVE-2001-0653

The vulnerability in Sendmail's debugging functionality allows a signed integer overflow via the '-d' switch, enabling arbitrary memory writes and potential full system compromise due to privilege elevation before dropping privileges.

The vulnerability in Sendmail's debugging functionality involves a signed integer overflow in the tTflag() function, allowing arbitrary memory writes via a large numeric value in the '-d' switch. This can lead to privilege escalation before Sendmail drops elevated privileges.

This exploit targets a signed integer overflow in Sendmail's debugging functionality (CVE-2001-0653) to achieve arbitrary memory writes and execute shellcode. It uses the '-d' command-line switch to manipulate the trace vector and gain root privileges.

This exploit leverages a signed integer overflow in Sendmail's tTflag() function via the '-d' command-line switch to overwrite memory and achieve arbitrary code execution. It constructs a malicious debug argument to overwrite the GOT entry of setuid, redirecting execution to shellcode.