Total vulnerabilities in the database
The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337.
| Software | From | Fixed in |
|---|---|---|
| sendmail / sendmail_switch | 2.1.2 | 2.1.2.x |
| sendmail / sendmail_switch | 3.0.2 | 3.0.2.x |
| sendmail / sendmail_switch | 2.2.2 | 2.2.2.x |
| sendmail / sendmail | 2.6.2 | 2.6.2.x |
| sendmail / sendmail | 8.9.2 | 8.9.2.x |
| sendmail / sendmail_switch | 2.1.1 | 2.1.1.x |
| sendmail / sendmail | 8.11.4 | 8.11.4.x |
| sendmail / sendmail | 8.12-beta16 | 8.12-beta16.x |
| sendmail / sendmail | 2.6 | 2.6.x |
| sendmail / sendmail | 8.10.1 | 8.10.1.x |
| sendmail / sendmail | 8.12.8 | 8.12.8.x |
| sendmail / sendmail | 8.9.1 | 8.9.1.x |
| sendmail / sendmail_switch | 2.2 | 2.2.x |
| sendmail / sendmail_switch | 2.2.1 | 2.2.1.x |
| sendmail / sendmail | 8.11.1 | 8.11.1.x |
| sendmail / sendmail | 8.11.3 | 8.11.3.x |
| sendmail / sendmail | 8.12.3 | 8.12.3.x |
| sendmail / sendmail | 8.12.4 | 8.12.4.x |
| sendmail / sendmail_switch | 2.1.3 | 2.1.3.x |
| sendmail / sendmail | 2.6.1 | 2.6.1.x |
| sendmail / sendmail | 8.10.2 | 8.10.2.x |
| sendmail / sendmail | 8.11.0 | 8.11.0.x |
| sendmail / sendmail | 8.12.1 | 8.12.1.x |
| sendmail / sendmail | 8.12-beta12 | 8.12-beta12.x |
| sendmail / sendmail_switch | 2.1 | 2.1.x |
| sendmail / sendmail | 3.0.3 | 3.0.3.x |
| sendmail / sendmail | 8.9.0 | 8.9.0.x |
| sendmail / sendmail | 8.10 | 8.10.x |
| sendmail / sendmail | 8.11.6 | 8.11.6.x |
| sendmail / sendmail | 8.12.0 | 8.12.0.x |
| sendmail / sendmail | 8.12.7 | 8.12.7.x |
| sendmail / sendmail_switch | 3.0.3 | 3.0.3.x |
| sendmail / sendmail | 3.0 | 3.0.x |
| sendmail / sendmail | 3.0.1 | 3.0.1.x |
| sendmail / sendmail | 8.11.2 | 8.11.2.x |
| sendmail / sendmail | 8.12-beta5 | 8.12-beta5.x |
| sendmail / sendmail_switch | 2.2.4 | 2.2.4.x |
| sendmail / sendmail_switch | 2.2.5 | 2.2.5.x |
| sendmail / sendmail | 8.12.2 | 8.12.2.x |
| sendmail / sendmail | 8.12-beta10 | 8.12-beta10.x |
| sendmail / sendmail | 8.9.3 | 8.9.3.x |
| sendmail / sendmail_switch | 2.2.3 | 2.2.3.x |
| sendmail / sendmail | 3.0.2 | 3.0.2.x |
| sendmail / sendmail | 8.11.5 | 8.11.5.x |
| sendmail / sendmail | 8.12.5 | 8.12.5.x |
| sendmail / sendmail | 8.12.6 | 8.12.6.x |
| sendmail / sendmail | 8.12-beta7 | 8.12-beta7.x |
| sendmail / sendmail_switch | 2.1.4 | 2.1.4.x |
| sendmail / sendmail_switch | 2.1.5 | 2.1.5.x |
| sendmail / sendmail_switch | 3.0 | 3.0.x |
| sendmail / sendmail_switch | 3.0.1 | 3.0.1.x |
| hp / hp-ux_series_800 | 10.20 | 10.20.x |
| hp / hp-ux | 10.30 | 10.30.x |
| compaq / tru64 | 5.0a_pk3_bl17 | 5.0a_pk3_bl17.x |
| hp / hp-ux | 11.11 | 11.11.x |
| compaq / tru64 | 5.1_pk3_bl17 | 5.1_pk3_bl17.x |
| hp / hp-ux | 10.01 | 10.01.x |
| sun / solaris | 2.4 | 2.4.x |
| hp / sis | - | - |
| hp / hp-ux | 10.00 | 10.00.x |
| compaq / tru64 | 4.0g | 4.0g.x |
| compaq / tru64 | 4.0d | 4.0d.x |
| compaq / tru64 | 4.0d_pk9_bl17 | 4.0d_pk9_bl17.x |
| compaq / tru64 | 5.0_pk4_bl18 | 5.0_pk4_bl18.x |
| hp / hp-ux | 10.34 | 10.34.x |
| compaq / tru64 | 4.0g_pk3_bl17 | 4.0g_pk3_bl17.x |
| compaq / tru64 | 5.0 | 5.0.x |
| compaq / tru64 | 5.0_pk4_bl17 | 5.0_pk4_bl17.x |
| compaq / tru64 | 5.1_pk4_bl18 | 5.1_pk4_bl18.x |
| compaq / tru64 | 5.1b_pk1_bl1 | 5.1b_pk1_bl1.x |
| hp / hp-ux | 10.26 | 10.26.x |
| sun / solaris | 2.5.1 | 2.5.1.x |
| sun / solaris | 2.5 | 2.5.x |
| compaq / tru64 | 4.0f_pk6_bl17 | 4.0f_pk6_bl17.x |
| sun / sunos | 5.5 | 5.5.x |
| sun / sunos | 5.7 | 5.7.x |
| sun / sunos | 5.8 | 5.8.x |
| compaq / tru64 | 4.0f_pk7_bl18 | 4.0f_pk7_bl18.x |
| compaq / tru64 | 5.0a | 5.0a.x |
| compaq / tru64 | 5.1_pk6_bl20 | 5.1_pk6_bl20.x |
| compaq / tru64 | 5.1a | 5.1a.x |
| hp / hp-ux | 10.08 | 10.08.x |
| compaq / tru64 | 4.0b | 4.0b.x |
| compaq / tru64 | 5.1_pk5_bl19 | 5.1_pk5_bl19.x |
| hp / hp-ux_series_700 | 10.20 | 10.20.x |
| sun / solaris | 9.0 | 9.0.x |
| sun / solaris | 9.0-x86_update_2 | 9.0-x86_update_2.x |
| hp / hp-ux | 11.0.4 | 11.0.4.x |
| sun / sunos | 5.4 | 5.4.x |
| sun / solaris | 2.6 | 2.6.x |
| compaq / tru64 | 5.1 | 5.1.x |
| compaq / tru64 | 5.1a_pk3_bl3 | 5.1a_pk3_bl3.x |
| compaq / tru64 | 5.1b | 5.1b.x |
| hp / hp-ux | 10.16 | 10.16.x |
| hp / hp-ux | 10.20 | 10.20.x |
| hp / hp-ux | 10.24 | 10.24.x |
| hp / hp-ux | 11.20 | 11.20.x |
| hp / hp-ux | 11.22 | 11.22.x |
| sun / sunos | 5.5.1 | 5.5.1.x |
| sun / solaris | 8.0 | 8.0.x |
| compaq / tru64 | 4.0f | 4.0f.x |
| compaq / tru64 | 5.0f | 5.0f.x |
| compaq / tru64 | 5.1a_pk1_bl1 | 5.1a_pk1_bl1.x |
| compaq / tru64 | 5.1a_pk2_bl2 | 5.1a_pk2_bl2.x |
| hp / hp-ux | 10.09 | 10.09.x |
| hp / hp-ux | 10.10 | 10.10.x |
| hp / hp-ux | 11.00 | 11.00.x |
| sun / solaris | 7.0 | 7.0.x |