CVE-2006-4434

Name of the Vulnerable Software and Affected Versions Sendmail versions prior to 8.13.8

Description A use-after-free issue allows remote attackers to cause a denial of service, potentially crashing the system via a long "header line", which causes a previously freed variable to be referenced. The developer has noted that the denial of service is limited to filling up the disk with core dumps if the OS generates different core dumps, and that mail delivery or reception is not affected.

Recommendations For Sendmail versions prior to 8.13.8, update to version 8.13.8 or later to resolve the issue.