CVE-2002-2423

Sendmail 8.12.0-8.12.6 - Remote Log Truncation via Long IDENT Response

Title source: llm
STIX 2.1

Description

Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response.

References (3)

Core 3
Core References
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/10153.php
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/5770
Various Sources mailing-list x_refsource_bugtraq
http://archive.cert.uni-stuttgart.de/bugtraq/2002/09/msg00267.html

Scores

EPSS 0.0117
EPSS Percentile 63.8%

Details

CWE
CWE-20
Status published
Products (7)
sendmail/sendmail 8.12.0
sendmail/sendmail 8.12.1
sendmail/sendmail 8.12.2
sendmail/sendmail 8.12.3
sendmail/sendmail 8.12.4
sendmail/sendmail 8.12.5
sendmail/sendmail 8.12.6
Published Dec 31, 2002
Tracked Since Feb 18, 2026