PT-2002-1916 · Sendmail · Sendmail
Published
2002-10-04
·
Updated
2017-10-10
·
CVE-2002-0906
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Sendmail versions prior to 8.12.5
Description:
A buffer overflow issue exists when Sendmail is configured to use a custom DNS map to query TXT records, allowing remote attackers to cause a denial of service and possibly execute arbitrary code via a malicious DNS server.
Recommendations:
For versions prior to 8.12.5, update to version 8.12.5 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Sendmail