CVE-1999-1580

HIGH(7.2)

AV:L/AC:L/Au:N/C:C/I:C/A:C

Risk Signal Score18/100 — NIEDRIG

CVSS 7.2 — Hoch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

7.2

Technische Schwere

Beschreibung

SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.

Referenzen

http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html
http://www.auscert.org.au/render.html?it=1853&cid=1978
http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul
http://www.kb.cert.org/vuls/id/3278
http://www.securityfocus.com/bid/7829
http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.html
http://www.auscert.org.au/render.html?it=1853&cid=1978
http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vul
http://www.kb.cert.org/vuls/id/3278
http://www.securityfocus.com/bid/7829