National Vulnerability Database (NVD) National Vulnerability Database (CVE-2002-1337)

National Cyber-Alert System

Vulnerability Summary for CVE-2002-1337

Original release date:03/07/2003

Last revised:09/05/2008

Source: US-CERT/NIST

Overview

Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c.

Impact

CVSS Severity (version 2.0):

CVSS v2 Base Score:10.0 (HIGH) (AV:N/AC:L/Au:N/C:C/I:C/A:C) (legend)

Impact Subscore: 10.0

Exploitability Subscore: 10.0

CVSS Version 2 Metrics:

Access Vector: Network exploitable

Access Complexity: Low

Authentication: Not required to exploit

Impact Type:Provides administrator access, Allows complete confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

CERT/CC Advisory: CA-2003-07

Name: CA-2003-07

Type: Advisory; Patch Information

Hyperlink:http://www.cert.org/advisories/CA-2003-07.html

US-CERT Vulnerability Note: VU#398025

Name: VU#398025

Hyperlink:http://www.kb.cert.org/vuls/id/398025

External Source: CONFIRM

Name: http://www.sendmail.org/8.12.8.html

Type: Advisory; Patch Information

Hyperlink:http://www.sendmail.org/8.12.8.html

External Source: BID

Name: 6991

Type: Advisory; Patch Information

Hyperlink:http://www.securityfocus.com/bid/6991

External Source: ISS

Name: 20030303 Remote Sendmail Header Processing Vulnerability

Type: Advisory; Patch Information

Hyperlink:http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950

External Source: REDHAT

Name: RHSA-2003:227

Hyperlink:http://www.redhat.com/support/errata/RHSA-2003-227.html

External Source: REDHAT

Name: RHSA-2003:074

Hyperlink:http://www.redhat.com/support/errata/RHSA-2003-074.html

External Source: REDHAT

Name: RHSA-2003:073

Hyperlink:http://www.redhat.com/support/errata/RHSA-2003-073.html

External Source: XF

Name: sendmail-header-processing-bo(10748)

Hyperlink:http://www.iss.net/security_center/static/10748.php

External Source: DEBIAN

Name: DSA-257

Hyperlink:http://www.debian.org/security/2003/dsa-257

External Source: AIXAPAR

Name: IY40502

Hyperlink:http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only

External Source: AIXAPAR

Name: IY40501

Hyperlink:http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only

External Source: AIXAPAR

Name: IY40500

Hyperlink:http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only

External Source: HP

Name: HPSBUX0302-246

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=104679411316818&w=2

External Source: BUGTRAQ

Name: 20030304 GLSA: sendmail (200303-4)

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=104678862409849&w=2

External Source: BUGTRAQ

Name: 20030303 Fwd: APPLE-SA-2003-03-03 sendmail

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=104678862109841&w=2

External Source: BUGTRAQ

Name: 20030304 [LSD] Technical analysis of the remote sendmail vulnerability

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=104678739608479&w=2

External Source: BUGTRAQ

Name: 20030303 sendmail 8.12.8 available

Hyperlink:http://marc.theaimsgroup.com/?l=bugtraq&m=104673778105192&w=2

External Source: MANDRAKE

Name: MDKSA-2003:028

Hyperlink:http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028

External Source: CONECTIVA

Name: CLA-2003:571

Hyperlink:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571

External Source: SGI

Name: 20030301-01-P

Hyperlink:ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P

External Source: CALDERA

Name: CSSA-2003-SCO.5

Hyperlink:ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5

External Source: CALDERA

Name: CSSA-2003-SCO.6

Hyperlink:ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6

External Source: NETBSD

Name: NetBSD-SA2003-002

Hyperlink:ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc

US Government Resource: oval:org.mitre.oval:def:2222

Name: oval:org.mitre.oval:def:2222

Type: Tool Signature

Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2222

Vulnerable software and versions

Configuration 1

* cpe:/a:sendmail:advanced_message_server:1.2

* cpe:/a:sendmail:advanced_message_server:1.3

* cpe:/a:sendmail:sendmail:2.6.1::nt

* cpe:/a:sendmail:sendmail:2.6::nt

* cpe:/a:sendmail:sendmail:3.0.1::nt

* cpe:/a:sendmail:sendmail:3.0.2::nt

* cpe:/a:sendmail:sendmail:3.0::nt

* cpe:/a:sendmail:sendmail:5.59

* cpe:/a:sendmail:sendmail:5.61

* cpe:/a:sendmail:sendmail:5.65

* cpe:/a:sendmail:sendmail:8.10

* cpe:/a:sendmail:sendmail:8.10.1

* cpe:/a:sendmail:sendmail:8.10.2

* cpe:/a:sendmail:sendmail:8.11.0

* cpe:/a:sendmail:sendmail:8.11.1

* cpe:/a:sendmail:sendmail:8.11.2

* cpe:/a:sendmail:sendmail:8.11.3

* cpe:/a:sendmail:sendmail:8.11.4

* cpe:/a:sendmail:sendmail:8.11.5

* cpe:/a:sendmail:sendmail:8.11.6

* cpe:/a:sendmail:sendmail:8.12.0

* cpe:/a:sendmail:sendmail:8.12.1

* cpe:/a:sendmail:sendmail:8.12.2

* cpe:/a:sendmail:sendmail:8.12.3

* cpe:/a:sendmail:sendmail:8.12.4

* cpe:/a:sendmail:sendmail:8.12.5

* cpe:/a:sendmail:sendmail:8.12.6

* cpe:/a:sendmail:sendmail:8.12.7

* cpe:/a:sendmail:sendmail:8.12:beta10

* cpe:/a:sendmail:sendmail:8.12:beta12

* cpe:/a:sendmail:sendmail:8.12:beta16

* cpe:/a:sendmail:sendmail:8.12:beta5

* cpe:/a:sendmail:sendmail:8.12:beta7

* cpe:/a:sendmail:sendmail:8.8.8

* cpe:/a:sendmail:sendmail:8.9.0

* cpe:/a:sendmail:sendmail:8.9.1

* cpe:/a:sendmail:sendmail:8.9.2

* cpe:/a:sendmail:sendmail:8.9.3

* cpe:/a:sendmail:sendmail_switch:2.1

* cpe:/a:sendmail:sendmail_switch:2.1.1

* cpe:/a:sendmail:sendmail_switch:2.1.2

* cpe:/a:sendmail:sendmail_switch:2.1.3

* cpe:/a:sendmail:sendmail_switch:2.1.4

* cpe:/a:sendmail:sendmail_switch:2.2

* cpe:/a:sendmail:sendmail_switch:2.2.1

* cpe:/a:sendmail:sendmail_switch:2.2.2

* cpe:/a:sendmail:sendmail_switch:2.2.3

* cpe:/a:sendmail:sendmail_switch:2.2.4

* cpe:/a:sendmail:sendmail_switch:3.0

* cpe:/a:sendmail:sendmail_switch:3.0.1

* cpe:/a:sendmail:sendmail_switch:3.0.2

* cpe:/a:sgi:freeware:1.0

Configuration 2

* cpe:/o:gentoo:linux:1.4:rc1

* cpe:/o:gentoo:linux:1.4:rc2

* cpe:/o:hp:hp-ux:10.10

* cpe:/o:hp:hp-ux:10.20

* cpe:/o:hp:hp-ux:11.0.4

* cpe:/o:hp:hp-ux:11.00

* cpe:/o:hp:hp-ux:11.11

* cpe:/o:hp:hp-ux:11.22

* cpe:/o:netbsd:netbsd:1.5

* cpe:/o:netbsd:netbsd:1.5.1

* cpe:/o:netbsd:netbsd:1.5.2

* cpe:/o:netbsd:netbsd:1.5.3

* cpe:/o:netbsd:netbsd:1.6

* cpe:/o:sun:solaris:2.6

* cpe:/o:sun:solaris:2.6::x86

* cpe:/o:sun:solaris:7.0

* cpe:/o:sun:solaris:7.0::x86

* cpe:/o:sun:solaris:8.0

* cpe:/o:sun:solaris:8.0::x86

* cpe:/o:sun:solaris:9.0::sparc

* cpe:/o:sun:solaris:9.0::x86

* cpe:/o:windriver:bsdos:4.2

* cpe:/o:windriver:bsdos:4.3.1

* cpe:/o:windriver:bsdos:5.0

* cpe:/o:windriver:platform_sa:1.0

Configuration 3

* cpe:/h:hp:alphaserver_sc

* Denotes Vulnerable Software

Technical Details

Vulnerability Type (View All)

CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1337