Details of VAR-200304-0013

ID

VAR-200304-0013

CVE

CVE-2003-0161

TITLE

Sendmail address parsing buffer overflow

Trust: 0.8

sources: CERT/CC: VU#897604

DESCRIPTION

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input value as a special "NOCHAR" control value, allowing attackers to cause a denial of service and possibly execute arbitrary code via a buffer overflow attack using messages, a different vulnerability than CVE-2002-1337. Sendmail contains a buffer overflow in code that parses email addresses. A remote attacker could execute arbitrary code or cause a denial of service on a vulnerable system. The flaw is present in the 'prescan()' procedure, which is used for processing email addresses in SMTP headers. This vulnerability stems from a logic error in the conversion of a char to an integer value. The issue has been fixed Sendmail 8.12.9. Most organizations have various mail transfer agents (MTAs) at various locations within their network, at least one of which is directly connected to the Internet. Sendmail is one of the most popular MTAs. According to statistics, Internet mail traffic handled by Sendmail accounts for 50\\% to 75\\% of the total. Many UNIX and Linux workstations run Sendmail by default. This vulnerability exists in the prescan() process. The vulnerability is for messages, not connections. This means that the vulnerability is triggered by the content of a specially crafted email message, rather than by lower-level network communications. This is important because a non-vulnerable MTA can send malicious messages along with other protected MTAs in the network. In other words, even if the software used by the boundary MTA of the site is not sendmail, the sendmail service program with loopholes inside the network is still threatened. Messages that exploit this vulnerability can also pass through many common packet filters or firewalls undetected

Trust: 2.79

sources: NVD: CVE-2003-0161 // CERT/CC: VU#897604 // JVNDB: JVNDB-2003-000101 // BID: 7230 // VULHUB: VHN-6991 // VULMON: CVE-2003-0161

AFFECTED PRODUCTS

vendor:	sendmail	model:	switch	scope:	eq	version:	3.0	Trust: 1.8
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.24	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.3	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.8	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.6	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.7	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.4	Trust: 1.6
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.5	Trust: 1.6
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.01	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.10	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.22	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.34	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0.4	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.30	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.11	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.5.1	Trust: 1.3
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.6	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.26	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.16	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.20	Trust: 1.3
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.5	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	7.0	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.20	Trust: 1.3
vendor:	sun	model:	solaris	scope:	eq	version:	2.4	Trust: 1.3
vendor:	ibm	model:	aix	scope:	eq	version:	5.2	Trust: 1.1
vendor:	ibm	model:	aix	scope:	eq	version:	4.3	Trust: 1.1
vendor:	ibm	model:	aix	scope:	eq	version:	5.1	Trust: 1.1
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1b_pk1_bl1	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.4	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk3_bl17	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.4	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.0	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.2	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.5	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f_pk7_bl18	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1b	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk3_bl3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.1	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0g	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.4	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0_pk4_bl18	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.5	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.3	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.8	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10.1	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10.2	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0d_pk9_bl17	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.5	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0f	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0a_pk3_bl17	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0b	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.00	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.2	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0a	Trust: 1.0
vendor:	hp	model:	hp-ux series 800	scope:	eq	version:	10.20	Trust: 1.0
vendor:	sun	model:	solaris	scope:	eq	version:	9.0	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.4	Trust: 1.0
vendor:	sun	model:	solaris	scope:	eq	version:	8.0	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.5	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0g_pk3_bl17	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk2_bl2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.1	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.2	Trust: 1.0
vendor:	hp	model:	hp-ux series 700	scope:	eq	version:	10.20	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.0	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.2	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk4_bl18	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.09	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.0_pk4_bl17	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.00	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.1	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.08	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk6_bl20	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.3	Trust: 1.0
vendor:	hp	model:	sis	scope:	eq	version:	*	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.6	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.7	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.2	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	5.5.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.0	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.1	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0f_pk6_bl17	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.3	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1a_pk1_bl1	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.3	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1_pk5_bl19	Trust: 1.0
vendor:	sun	model:	sunos	scope:	eq	version:	-	Trust: 1.0
vendor:	compaq	model:	tru64	scope:	eq	version:	4.0d	Trust: 1.0
vendor:	apple computer	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	conectiva	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	debian	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	freebsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	fujitsu	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	gentoo linux	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	hewlett packard	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	ibm	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	mandrakesoft	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	mirapoint	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	netbsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	nortel	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openbsd	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	openpkg	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	red hat	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sco	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sgi	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sendmail	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sequent ibm	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	slackware	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	suse	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	the sendmail consortium	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	wind river	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	wirex	model:	-	scope:	-	version:	-	Trust: 0.8
vendor:	sendmail consortium	model:	sendmail	scope:	lte	version:	8.11.6	Trust: 0.8
vendor:	sendmail consortium	model:	sendmail	scope:	lte	version:	8.12.8	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq4	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq550	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raqxtr	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	2.6 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	2.6 (x86)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	7.0 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	7.0 (x86)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	8 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	8 (x86)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (x86)	Trust: 0.8
vendor:	sendmail	model:	advanced message server	scope:	-	version:	-	Trust: 0.8
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.x	Trust: 0.8
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.x	Trust: 0.8
vendor:	turbo linux	model:	turbolinux advanced server	scope:	eq	version:	6	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.1	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.5	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	8	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	6.0	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	8	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	10.10	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	10.20	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.00	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.11	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.22	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.04	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	6.2	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.0	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.1	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.2	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.3	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	8.0	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	9	Trust: 0.8
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.04	Trust: 0.6
vendor:	compaq	model:	tru64 pk4	scope:	eq	version:	5.0	Trust: 0.6
vendor:	hp	model:	hp-ux sis	scope:	eq	version:	10.20	Trust: 0.3
vendor:	ibm	model:	z/os v1r4	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 pk4	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.16	Trust: 0.3
vendor:	ibm	model:	os/390 v2r6	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 f pk6	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.0	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta10	scope:	eq	version:	8.12	Trust: 0.3
vendor:	redhat	model:	enterprise linux ws	scope:	eq	version:	2.1	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	4.3.2	Trust: 0.3
vendor:	compaq	model:	tru64 pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	ne	version:	x10.2.5	Trust: 0.3
vendor:	hp	model:	nonstop-ux whitney	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.22	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6.2	Trust: 0.3
vendor:	hp	model:	mpe/ix	scope:	eq	version:	7.0	Trust: 0.3
vendor:	ibm	model:	z/os	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	6.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.7	Trust: 0.3
vendor:	ibm	model:	os/390 v2r9	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.5	Trust: 0.3
vendor:	sun	model:	solaris x86	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	compaq	model:	tru64 b	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.2	Trust: 0.3
vendor:	hp	model:	mpe/ix	scope:	eq	version:	7.5	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.3	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.9	Trust: 0.3
vendor:	hp	model:	hp-ux series	scope:	eq	version:	10.20700	Trust: 0.3
vendor:	redhat	model:	advanced workstation for the itanium processor	scope:	eq	version:	2.1	Trust: 0.3
vendor:	ibm	model:	z/os v1r2	scope:	-	version:	-	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta5	scope:	eq	version:	8.12	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.6	Trust: 0.3
vendor:	hp	model:	mpe/ix	scope:	eq	version:	6.5	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.7	Trust: 0.3
vendor:	compaq	model:	tru64 g pk3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 d pk9	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta16	scope:	eq	version:	8.12	Trust: 0.3
vendor:	ibm	model:	os/390 v2r8	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	solaris 2.6 x86	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.04	scope:	-	version:	-	Trust: 0.3
vendor:	ibm	model:	aix l	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sun	model:	solaris 2.4 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	cobalt raq 4100r	scope:	eq	version:	550	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.11	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.4	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.8	Trust: 0.3
vendor:	compaq	model:	tru64 d	scope:	eq	version:	4.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.2	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.8	Trust: 0.3
vendor:	compaq	model:	tru64 g	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sun	model:	solaris 8 sparc	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	nonstop-ux puma	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.2	Trust: 0.3
vendor:	sun	model:	solaris	scope:	eq	version:	9	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.18	Trust: 0.3
vendor:	redhat	model:	enterprise linux es	scope:	eq	version:	2.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.3	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.8	Trust: 0.3
vendor:	compaq	model:	tru64 f pk7	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.2	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.9	Trust: 0.3
vendor:	sco	model:	openlinux server	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	compaq	model:	tru64 pk6	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.4	Trust: 0.3
vendor:	sun	model:	solaris 8 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.2	Trust: 0.3
vendor:	sun	model:	cobalt qube3 4000wg	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.8	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	ne	version:	x10.2.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	4.3.3	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta12	scope:	eq	version:	8.12	Trust: 0.3
vendor:	ibm	model:	os/390 v2r10	scope:	-	version:	-	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.13	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.2	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.14	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.3	Trust: 0.3
vendor:	hp	model:	mpe/ix	scope:	eq	version:	6.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.3	Trust: 0.3
vendor:	hp	model:	altavista firewall avfw98	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 b pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 a pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.4	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.9	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.7	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.1	Trust: 0.3
vendor:	sun	model:	solaris 2.5 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.4	Trust: 0.3
vendor:	sco	model:	openlinux workstation	scope:	eq	version:	3.1.1	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.4	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta7	scope:	eq	version:	8.12	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.5	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.1	Trust: 0.3
vendor:	hp	model:	tru64 a pk4	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 a pk2	scope:	eq	version:	5.1	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.00	scope:	-	version:	-	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.15	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.10	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.5	Trust: 0.3
vendor:	sun	model:	solaris 7.0 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	linux	scope:	eq	version:	5.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.4	Trust: 0.3
vendor:	sun	model:	solaris 9 x86 update	scope:	eq	version:	2	Trust: 0.3
vendor:	sun	model:	lx50	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.0	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.3	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	alphaserver sc	scope:	-	version:	-	Trust: 0.3
vendor:	sgi	model:	irix	scope:	ne	version:	6.5.20	Trust: 0.3
vendor:	compaq	model:	tru64 pk5	scope:	eq	version:	5.1	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.4	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.2	Trust: 0.3
vendor:	compaq	model:	tru64 b	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.12	Trust: 0.3
vendor:	sun	model:	solaris 9 x86	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.1	Trust: 0.3
vendor:	sun	model:	solaris ppc	scope:	eq	version:	2.5.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.2	Trust: 0.3
vendor:	hp	model:	hp-ux series	scope:	eq	version:	10.20800	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.17	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.3	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.19	Trust: 0.3
vendor:	ibm	model:	aix	scope:	eq	version:	4.3.1	Trust: 0.3
vendor:	sgi	model:	irix	scope:	eq	version:	6.5.2	Trust: 0.3
vendor:	ibm	model:	mvs	scope:	-	version:	-	Trust: 0.3
vendor:	sun	model:	cobalt raq4 3001r	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10.1	Trust: 0.3
vendor:	redhat	model:	enterprise linux as	scope:	eq	version:	2.1	Trust: 0.3
vendor:	sun	model:	cobalt raq xtr 3500r	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	altavista firewall raptor ec	scope:	-	version:	-	Trust: 0.3

sources: CERT/CC: VU#897604 // BID: 7230 // JVNDB: JVNDB-2003-000101 // CNNVD: CNNVD-200304-025 // NVD: CVE-2003-0161

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-0161
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#897604
value:	67.20
Trust: 0.8
NVD:	CVE-2003-0161
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200304-025
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-6991
value:	HIGH
Trust: 0.1
VULMON:	CVE-2003-0161
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2003-0161
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-6991
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#897604 // VULHUB: VHN-6991 // VULMON: CVE-2003-0161 // JVNDB: JVNDB-2003-000101 // CNNVD: CNNVD-200304-025 // NVD: CVE-2003-0161

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0161

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200304-025

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 7230 // CNNVD: CNNVD-200304-025

CONFIGURATIONS

sources: JVNDB: JVNDB-2003-000101

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-6991 // VULMON: CVE-2003-0161

PATCH

title:	HPSBUX00253	url:	http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=c00958571	Trust: 0.8
title:	HPSBUX0304-253	url:	http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX0304-253.html	Trust: 0.8
title:	Top Page	url:	http://www.ibm.com/jp/	Trust: 0.8
title:	RHSA-2003:120	url:	http://rhn.redhat.com/errata/RHSA-2003-120.html	Trust: 0.8
title:	sendmail 8.12.9 available	url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104896621106790&w=2	Trust: 0.8
title:	52620	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52620-1	Trust: 0.8
title:	52700	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52700-1	Trust: 0.8
title:	52700	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52700-3	Trust: 0.8
title:	52620	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52620-3	Trust: 0.8
title:	4 Sendmail Security Update 2.0.1	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq4.eng&nav=patchpage	Trust: 0.8
title:	XTR Sendmail Security Update 1.0.1	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raqxtr.eng&nav=patchpage	Trust: 0.8
title:	550 Sendmail Security Update 0.0.1	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq550.eng&nav=patchpage	Trust: 0.8
title:	TLSA-2003-24	url:	http://www.turbolinux.com/security/2003/TLSA-2003-24.txt	Trust: 0.8
title:	Sendmail Inc. Information for VU#897604	url:	http://www.kb.cert.org/vuls/id/AAMN-5KUUTZ	Trust: 0.8
title:	Top Page	url:	http://www.sendmail.co.jp/	Trust: 0.8
title:	RHSA-2003:120	url:	http://www.jp.redhat.com/support/errata/RHSA/RHSA-2003-120J.html	Trust: 0.8
title:	TLSA-2003-24	url:	http://www.turbolinux.co.jp/security/2003/TLSA-2003-24j.txt	Trust: 0.8
title:	Debian Security Advisories: DSA-290-1 sendmail-wide -- char-to-int conversion	url:	https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories&qid=8086c3d7d3014252ce37b8626383010c	Trust: 0.1
title:	cumes	url:	https://github.com/byte-mug/cumes	Trust: 0.1

sources: VULMON: CVE-2003-0161 // JVNDB: JVNDB-2003-000101

EXTERNAL IDS

db:	CERT/CC	id:	VU#897604	Trust: 3.7
db:	NVD	id:	CVE-2003-0161	Trust: 2.9
db:	BID	id:	7230	Trust: 2.9
db:	XF	id:	11653	Trust: 0.8
db:	JVNDB	id:	JVNDB-2003-000101	Trust: 0.8
db:	CNNVD	id:	CNNVD-200304-025	Trust: 0.7
db:	REDHAT	id:	RHSA-2003:121	Trust: 0.6
db:	REDHAT	id:	RHSA-2003:120	Trust: 0.6
db:	DEBIAN	id:	DSA-278	Trust: 0.6
db:	DEBIAN	id:	DSA-290	Trust: 0.6
db:	SCO	id:	SCOSA-2004.11	Trust: 0.6
db:	IMMUNIX	id:	IMNX-2003-7+-002-01	Trust: 0.6
db:	SUNALERT	id:	52620	Trust: 0.6
db:	SUNALERT	id:	52700	Trust: 0.6
db:	SUNALERT	id:	1001088	Trust: 0.6
db:	BUGTRAQ	id:	20030329 SENDMAIL 8.12.9 AVAILABLE	Trust: 0.6
db:	BUGTRAQ	id:	20030520 [FWD: 127 RESEARCH AND DEVELOPMENT: 127 DAY!]	Trust: 0.6
db:	BUGTRAQ	id:	20030331 GLSA: SENDMAIL (200303-27)	Trust: 0.6
db:	BUGTRAQ	id:	20030329 SENDMAIL: -1 GONE WILD	Trust: 0.6
db:	BUGTRAQ	id:	20030330 [OPENPKG-SA-2003.027] OPENPKG SECURITY ADVISORY (SENDMAIL)	Trust: 0.6
db:	FULLDISC	id:	20030329 SENDMAIL: -1 GONE WILD	Trust: 0.6
db:	CERT/CC	id:	CA-2003-12	Trust: 0.6
db:	CONECTIVA	id:	CLA-2003:614	Trust: 0.6
db:	SGI	id:	20030401-01-P	Trust: 0.6
db:	CALDERA	id:	CSSA-2003-016.0	Trust: 0.6
db:	GENTOO	id:	GLSA-200303-27	Trust: 0.6
db:	FREEBSD	id:	FREEBSD-SA-03:07	Trust: 0.6
db:	EXPLOIT-DB	id:	24	Trust: 0.2
db:	SEEBUG	id:	SSVID-15232	Trust: 0.1
db:	SEEBUG	id:	SSVID-62723	Trust: 0.1
db:	SEEBUG	id:	SSVID-76244	Trust: 0.1
db:	EXPLOIT-DB	id:	22442	Trust: 0.1
db:	VULHUB	id:	VHN-6991	Trust: 0.1
db:	VULMON	id:	CVE-2003-0161	Trust: 0.1

sources: CERT/CC: VU#897604 // VULHUB: VHN-6991 // VULMON: CVE-2003-0161 // BID: 7230 // JVNDB: JVNDB-2003-000101 // CNNVD: CNNVD-200304-025 // NVD: CVE-2003-0161

REFERENCES

url:	http://www.kb.cert.org/vuls/id/897604	Trust: 3.0
url:	http://www.securityfocus.com/bid/7230	Trust: 2.7
url:	http://www.cert.org/advisories/ca-2003-12.html	Trust: 2.6
url:	http://www.securityfocus.com/archive/1/321997	Trust: 1.8
url:	ftp://ftp.caldera.com/pub/security/openlinux/cssa-2003-016.0.txt	Trust: 1.8
url:	http://lists.apple.com/mhonarc/security-announce/msg00028.html	Trust: 1.8
url:	http://www.debian.org/security/2003/dsa-278	Trust: 1.8
url:	http://www.debian.org/security/2003/dsa-290	Trust: 1.8
url:	ftp://ftp.freebsd.org/pub/freebsd/cert/advisories/freebsd-sa-03:07.sendmail.asc	Trust: 1.8
url:	http://lists.grok.org.uk/pipermail/full-disclosure/2003-march/004295.html	Trust: 1.8
url:	http://www.gentoo.org/security/en/glsa/glsa-200303-27.xml	Trust: 1.8
url:	http://www.redhat.com/support/errata/rhsa-2003-120.html	Trust: 1.8
url:	http://www.redhat.com/support/errata/rhsa-2003-121.html	Trust: 1.8
url:	ftp://ftp.sco.com/pub/updates/openserver/scosa-2004.11/scosa-2004.11.txt	Trust: 1.8
url:	ftp://patches.sgi.com/support/free/security/advisories/20030401-01-p	Trust: 1.8
url:	http://sunsolve.sun.com/search/document.do?assetkey=1-77-1001088.1-1	Trust: 1.8
url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52620-1	Trust: 1.8
url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-52700-1	Trust: 1.8
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000614	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/316961/30/25250/threaded	Trust: 1.2
url:	http://www.securityfocus.com/archive/1/317135/30/25220/threaded	Trust: 1.2
url:	http://www.securityfocus.com/archive/1/archive/1/317135/30/25220/threaded	Trust: 1.2
url:	http://marc.info/?l=bugtraq&m=104896621106790&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=104914999806315&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=104897487512238&w=2	Trust: 1.1
url:	http://www.securityfocus.com/archive/1/316773/2003-03-28/2003-04-03/0	Trust: 0.8
url:	http://www.iss.net/issen/delivery/xforce/alertdetail.jsp?oid=22127	Trust: 0.8
url:	http://www.sendmail.org/secure-install.html	Trust: 0.8
url:	http://www.sendmail.org/ftp/release_notes	Trust: 0.8
url:	http://www.ietf.org/rfc/rfc2047.txt	Trust: 0.8
url:	http://www.ciac.org/ciac/bulletins/n-067.shtml	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2003-0161	Trust: 0.8
url:	http://www.ipa.go.jp/security/ciadr/20030331sendmail.html	Trust: 0.8
url:	http://www.jpcert.or.jp/wr/2003/wr031401.txt	Trust: 0.8
url:	http://www.jpcert.or.jp/wr/2003/wr031501.txt	Trust: 0.8
url:	http://www.jpcert.or.jp/wr/2003/wr031301.txt	Trust: 0.8
url:	http://www.jpcert.or.jp/at/2003/at030004.txt	Trust: 0.8
url:	http://jvn.jp/cert/jvnca-2003-12	Trust: 0.8
url:	http://jvn.jp/cert/jvnca-2003-07/index.html	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2003-0161	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/11653	Trust: 0.8
url:	http://www.isskk.co.jp/support/techinfo/general/sendmail033103_xforce.html	Trust: 0.8
url:	http://www.cyberpolice.go.jp/important/20030330_153031.html	Trust: 0.8
url:	http://www.cyberpolice.go.jp/important/20030506_122656.html	Trust: 0.8
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104897487512238&w=2	Trust: 0.6
url:	http://www.securityfocus.com/archive/1/archive/1/316961/30/25250/threaded	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104914999806315&w=2	Trust: 0.6
url:	http://marc.theaimsgroup.com/?l=bugtraq&m=104896621106790&w=2	Trust: 0.6
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f52620	Trust: 0.3
url:	http://www.info.apple.com/usen/security/security_updates.html	Trust: 0.3
url:	http://www-1.ibm.com/services/continuity/recover1.nsf/mss/mss-oar-e01-2003.0793.1	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raqxtr.eng&nav=patchpage	Trust: 0.3
url:	http://rhn.redhat.com/errata/rhsa-2003-121.html	Trust: 0.3
url:	http://www.sendmail.org/	Trust: 0.3
url:	http://www.sotlinux.org/en/sotlinux/sa/2003/2003-0019.php	Trust: 0.3
url:	http://ftp.support.compaq.com/patches/public/unix/v4.0f/duv40fb18-c0093400-17811-es-20030403.readme	Trust: 0.3
url:	http://ftp.support.compaq.com/patches/public/unix/v5.1a/t64v51ab21-c0112900-17770-es-20030402.readme	Trust: 0.3
url:	http://ftp.support.compaq.com/patches/public/unix/v5.1b/t64v51bb1-c0008000-17812-es-20030403.readme	Trust: 0.3
url:	http://ftp.support.compaq.com/patches/public/unix/v5.1/t64v51b20-c0176700-17773-es-20030402.readme	Trust: 0.3
url:	http://ftp.support.compaq.com/patches/public/unix/v4.0g/t64v40gb17-c0029200-17810-es-20030403.readme	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f52700&zone_32=category%3asecurity	Trust: 0.3
url:	/archive/1/321997	Trust: 0.3
url:	/archive/1/316760	Trust: 0.3
url:	http://marc.info/?l=bugtraq&m=104897487512238&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=104896621106790&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=104914999806315&w=2	Trust: 0.1
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000614	Trust: 0.1
url:	-	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://www.debian.org/security/./dsa-290	Trust: 0.1
url:	https://www.exploit-db.com/exploits/24/	Trust: 0.1
url:	https://github.com/byte-mug/cumes	Trust: 0.1

sources: CERT/CC: VU#897604 // VULHUB: VHN-6991 // VULMON: CVE-2003-0161 // BID: 7230 // JVNDB: JVNDB-2003-000101 // CNNVD: CNNVD-200304-025 // NVD: CVE-2003-0161

CREDITS

Michal Zalewski※ lcamtuf@dione.ids.pl

Trust: 0.6

sources: CNNVD: CNNVD-200304-025

SOURCES

db:	CERT/CC	id:	VU#897604
db:	VULHUB	id:	VHN-6991
db:	VULMON	id:	CVE-2003-0161
db:	BID	id:	7230
db:	JVNDB	id:	JVNDB-2003-000101
db:	CNNVD	id:	CNNVD-200304-025
db:	NVD	id:	CVE-2003-0161

LAST UPDATE DATE

2024-08-14T13:13:49.980000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#897604	date:	2003-09-25T00:00:00
db:	VULHUB	id:	VHN-6991	date:	2018-10-30T00:00:00
db:	VULMON	id:	CVE-2003-0161	date:	2018-10-30T00:00:00
db:	BID	id:	7230	date:	2007-09-21T23:40:00
db:	JVNDB	id:	JVNDB-2003-000101	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200304-025	date:	2010-02-14T00:00:00
db:	NVD	id:	CVE-2003-0161	date:	2018-10-30T16:26:22.763

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#897604	date:	2003-03-29T00:00:00
db:	VULHUB	id:	VHN-6991	date:	2003-04-02T00:00:00
db:	VULMON	id:	CVE-2003-0161	date:	2003-04-02T00:00:00
db:	BID	id:	7230	date:	2003-03-29T00:00:00
db:	JVNDB	id:	JVNDB-2003-000101	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200304-025	date:	2003-03-29T00:00:00
db:	NVD	id:	CVE-2003-0161	date:	2003-04-02T05:00:00