Executive Summary

Informations
NameCVE-1999-1309First vendor Publication1996-08-30
VendorCveLast vendor Modification2017-10-09

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score7.2Attack RangeLocal
Cvss Impact Score10Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Security Protection

ImpactsProvides administrator access : Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service.

Detail

Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-1309

CPE : Common Platform Enumeration

TypeDescriptionCount
Application19

OpenVAS Exploits

DateDescription
2005-11-03Name : Sendmail long debug local overflow
File : nvt/sendmail_long_debug.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
7530Sendmail -debug Local Privilege Escalation

Nessus® Vulnerability Scanner

DateDescription
2003-03-11Name : The remote host has an application that is affected by local privilege escala...
File : sendmail_long_debug.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BUGTRAQ http://www.dataguard.no/bugtraq/1994_1/0040.html
http://www.dataguard.no/bugtraq/1994_1/0042.html
http://www.dataguard.no/bugtraq/1994_1/0043.html
http://www.dataguard.no/bugtraq/1994_1/0048.html
http://www.dataguard.no/bugtraq/1994_1/0078.html
CERT http://www.cert.org/advisories/CA-94.12.sendmail.vulnerabilities
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/7155

Alert History

If you want to see full details history, please login or register.
0
1
2
3
DateInformations
2017-10-10 09:23:15
  • Multiple Updates
2016-04-26 11:30:56
  • Multiple Updates
2014-02-17 10:22:46
  • Multiple Updates
2013-05-11 11:58:15
  • Multiple Updates