CVE-2001-0653

Published Sep 20, 2001

Last updated 3 months ago

CVSS info 4.6

Overview

Description: Sendmail 8.10.0 through 8.11.5, and 8.12.0 beta, allows local users to modify process memory and possibly gain privileges via a large value in the 'category' part of debugger (-d) command line arguments, which is interpreted as a negative number.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 4.6
Impact score: 6.4
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84E6ECDA-DF65-47FF-A42F-FD5C1D864FA3"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7AA859AF-4E4E-4077-8E98-523E617A1DDC"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A9791650-C367-43B6-A0F4-5BB56CE10778"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8340DDA8-77DD-4AEB-B267-F86F64A851B3"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07DCBBEE-1DF0-40FE-B755-1FC35CF16788"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.11.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "581626E7-47B5-4819-B34F-B6DFD07A12F9"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.12:beta10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BD99394C-5408-4A01-8D4E-417FFFFDE9C7"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.12:beta12:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AAB59A24-87DE-4CAD-A2BA-AFCC0B2A55B2"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.12:beta16:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "97D641EF-0B69-45A1-B85E-3C9C93AB9D42"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.12:beta5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8972211B-6A5B-4095-9CBB-CEF4C23C9C65"
          },
          {
            "criteria": "cpe:2.3:a:sendmail:sendmail:8.12:beta7:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F81A2AD-90A0-4B97-86A3-92690A0FCA71"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References