Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2009-4565

sendmail before 8.14.4 does not properly handle a '\0' character in a Common Name (CN) field of an X.509 certificate, which (1) allows man-in-the-middle attackers to spoof arbitrary SSL-based SMTP servers via a crafted server certificate issued by a legitimate Certification Authority, and (2) allows remote attackers to bypass intended access restrictions via a crafted client certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

  • Published: Jan 4, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-4565
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
sendmail / sendmail 8.9.2 8.9.2.x
sendmail / sendmail 8.11.4 8.11.4.x
sendmail / sendmail 8.13.4 8.13.4.x
sendmail / sendmail 8.8.8 8.8.8.x
sendmail / sendmail 8.11.7 8.11.7.x
sendmail / sendmail 8.13.1 8.13.1.x
sendmail / sendmail 8.12-beta16 8.12-beta16.x
sendmail / sendmail 5 5.x
sendmail / sendmail 2.6 2.6.x
sendmail / sendmail 8.11.1 8.11.1.x
sendmail / sendmail 8.11.0 8.11.0.x
sendmail / sendmail 8.13.5 8.13.5.x
sendmail / sendmail 8.12.3 8.12.3.x
sendmail / sendmail 8.13.8 8.13.8.x
sendmail / sendmail 8.11.3 8.11.3.x
sendmail / sendmail 2.6.1 2.6.1.x
sendmail / sendmail 8.12.8 8.12.8.x
sendmail / sendmail 8.6.7 8.6.7.x
sendmail / sendmail 8.7.9 8.7.9.x
sendmail / sendmail 5.59 5.59.x
sendmail / sendmail 5.61 5.61.x
sendmail / sendmail 8.12.9 8.12.9.x
sendmail / sendmail 8.9.1 8.9.1.x
sendmail / sendmail 8.10.2 8.10.2.x
sendmail / sendmail 8.12.4 8.12.4.x
sendmail / sendmail 8.12-beta12 8.12-beta12.x
sendmail / sendmail 8.13.6 8.13.6.x
sendmail / sendmail 8.9.0 8.9.0.x
sendmail / sendmail 8.14.2 8.14.2.x
sendmail / sendmail 8.10.1 8.10.1.x
sendmail / sendmail 8.7.10 8.7.10.x
sendmail / sendmail 8.12.1 8.12.1.x
sendmail / sendmail 8.13.7 8.13.7.x
sendmail / sendmail 5.65 5.65.x
sendmail / sendmail 4.55 4.55.x
sendmail / sendmail 8.11.6 8.11.6.x
sendmail / sendmail 8.12.5 8.12.5.x
sendmail / sendmail 8.7.8 8.7.8.x
sendmail / sendmail 8.13.1.2 8.13.1.2.x
sendmail / sendmail 8.10 8.10.x
sendmail / sendmail 8.12-beta7 8.12-beta7.x
sendmail / sendmail - 8.14.3.x
sendmail / sendmail 8.9.3 8.9.3.x
sendmail / sendmail 8.12.0 8.12.0.x
sendmail / sendmail 4.1 4.1.x
sendmail / sendmail 8.14.1 8.14.1.x
sendmail / sendmail 8.10.0 8.10.0.x
sendmail / sendmail 8.12-beta5 8.12-beta5.x
sendmail / sendmail 8.12.6 8.12.6.x
sendmail / sendmail 8.7.6 8.7.6.x
sendmail / sendmail 8.12-beta10 8.12-beta10.x
sendmail / sendmail 8.12.2 8.12.2.x
sendmail / sendmail 3.0 3.0.x
sendmail / sendmail 8.11.2 8.11.2.x
sendmail / sendmail 3.0.1 3.0.1.x
sendmail / sendmail 8.13.0 8.13.0.x
sendmail / sendmail 8.12.7 8.12.7.x
sendmail / sendmail 8.7.7 8.7.7.x
sendmail / sendmail 8.12.10 8.12.10.x
sendmail / sendmail 8.11.5 8.11.5.x
sendmail / sendmail 8.13.3 8.13.3.x
sendmail / sendmail 8.13.2 8.13.2.x