CVE-2003-0681

EXPLOITED

Sendmail 8.12.9 - Buffer Overflow

Title source: llm

Description

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Gyan Chawdhary · cremotelinux

https://www.exploit-db.com/exploits/23154

View Code ZIP pw:eip

References (12)

[Vendor Advisory] http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000742

[Mailing List] http://marc.info/?l=bugtraq&m=106383437615742&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=106398718909274&w=2

[US Government Resource] http://www.kb.cert.org/vuls/id/108964

[Vendor Advisory] http://www.mandriva.com/security/advisories?name=MDKSA-2003:092

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2003-283.html

[Vendor Advisory] http://www.securityfocus.com/bid/8649

[Patch] http://www.sendmail.org/8.12.10.html

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/13216

[Third Party Advisory] http://www.debian.org/security/2003/dsa-384

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3606

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A595

Scores

EPSS 0.1244

EPSS Percentile 93.9%

Details

VulnCheck KEV 2017-06-20

Status published

Products (45)

apple/mac_os_x 10.2

apple/mac_os_x 10.2.1

apple/mac_os_x 10.2.2

apple/mac_os_x 10.2.3

apple/mac_os_x 10.2.4

apple/mac_os_x 10.2.5

apple/mac_os_x 10.2.6

apple/mac_os_x_server 10.2

apple/mac_os_x_server 10.2.1

apple/mac_os_x_server 10.2.2

... and 35 more

Published Oct 06, 2003

Tracked Since Feb 18, 2026