CVE-2001-0653

Name of the Vulnerable Software and Affected Versions: Sendmail versions 8.10.0 through 8.11.5 Sendmail version 8.12.0 beta

Description: The issue allows local users to potentially gain privileges by modifying process memory. This is achieved by providing a large value in the category part of the debugger (-d) command line arguments, which is then interpreted as a negative number.

Recommendations: For Sendmail versions 8.10.0 through 8.11.5, consider restricting access to the debugger (-d) command line arguments to minimize the risk of exploitation. For Sendmail version 8.12.0 beta, avoid using the category part of the debugger (-d) command line arguments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.