Details of VAR-200310-0080

ID

VAR-200310-0080

CVE

CVE-2003-0681

TITLE

Sendmail Ruleset Parsing Buffer Overflow Vulnerability

Trust: 0.9

sources: BID: 8649 // CNNVD: CNNVD-200310-016

DESCRIPTION

A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences. This vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service on a vulnerable system.This vulnerability does not affect the default configuration. Note that Sendmail under a default configuration is not vulnerable to this issue

Trust: 2.79

sources: NVD: CVE-2003-0681 // CERT/CC: VU#108964 // JVNDB: JVNDB-2003-000277 // BID: 8649 // VULHUB: VHN-7506 // VULMON: CVE-2003-0681

AFFECTED PRODUCTS

vendor:	turbolinux	model:	workstation	scope:	eq	version:	8.0	Trust: 1.9
vendor:	turbolinux	model:	server	scope:	eq	version:	7.0	Trust: 1.9
vendor:	turbolinux	model:	workstation	scope:	eq	version:	6.0	Trust: 1.9
vendor:	turbolinux	model:	server	scope:	eq	version:	6.5	Trust: 1.9
vendor:	turbolinux	model:	server	scope:	eq	version:	6.1	Trust: 1.9
vendor:	turbolinux	model:	server	scope:	eq	version:	8.0	Trust: 1.9
vendor:	turbolinux	model:	workstation	scope:	eq	version:	7.0	Trust: 1.9
vendor:	turbolinux	model:	advanced server	scope:	eq	version:	6.0	Trust: 1.9
vendor:	sendmail	model:	-	scope:	-	version:	-	Trust: 1.6
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.6	Trust: 1.3
vendor:	ibm	model:	aix	scope:	eq	version:	5.2	Trust: 1.3
vendor:	gentoo	model:	linux	scope:	eq	version:	1.2	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.22	Trust: 1.3
vendor:	gentoo	model:	linux	scope:	eq	version:	0.7	Trust: 1.3
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.2	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.4.3	Trust: 1.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.11	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.2	Trust: 1.3
vendor:	openbsd	model:	openbsd	scope:	eq	version:	3.3	Trust: 1.3
vendor:	ibm	model:	aix	scope:	eq	version:	4.3.3	Trust: 1.3
vendor:	ibm	model:	aix	scope:	eq	version:	5.1	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.6.1	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.3	Trust: 1.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5.1	Trust: 1.3
vendor:	gentoo	model:	linux	scope:	eq	version:	0.5	Trust: 1.3
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.4	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.5	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.5	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.0	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.6	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.7	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10	Trust: 1.0
vendor:	sendmail	model:	pro	scope:	eq	version:	8.9.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.4	Trust: 1.0
vendor:	gentoo	model:	linux	scope:	eq	version:	1.1a	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.8	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.5	Trust: 1.0
vendor:	sendmail	model:	pro	scope:	eq	version:	8.9.3	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.3	Trust: 1.0
vendor:	sendmail	model:	advanced message server	scope:	eq	version:	1.3	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.2	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.3	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.10.2	Trust: 1.0
vendor:	sendmail	model:	advanced message server	scope:	eq	version:	1.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.5	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.6	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.1.4	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.5	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0.4	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.4	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.1	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.1	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.1	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.1	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.0	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.4	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.4	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2.3	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.3	Trust: 1.0
vendor:	gentoo	model:	linux	scope:	eq	version:	1.4	Trust: 1.0
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.00	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.5	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.9	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.1	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	2.6	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	2.2.3	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.6	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.8.8	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.9.2	Trust: 1.0
vendor:	apple	model:	mac os x	scope:	eq	version:	10.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.12.6	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.0	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	8.11.1	Trust: 1.0
vendor:	apple	model:	mac os x server	scope:	eq	version:	10.2	Trust: 1.0
vendor:	sendmail	model:	sendmail	scope:	eq	version:	3.0.3	Trust: 1.0
vendor:	sendmail	model:	switch	scope:	eq	version:	3.0.3	Trust: 1.0
vendor:	sendmail consortium	model:	sendmail	scope:	lte	version:	8.12.9	Trust: 0.8
vendor:	sun microsystems	model:	cobalt qube3	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq4	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raq550	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	cobalt raqxtr	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	linux 5.0	scope:	-	version:	-	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	7.0 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	7.0 (x86)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	8 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	8 (x86)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (sparc)	Trust: 0.8
vendor:	sun microsystems	model:	solaris	scope:	eq	version:	9 (x86)	Trust: 0.8
vendor:	turbo linux	model:	turbolinux advanced server	scope:	eq	version:	6	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.1	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	6.5	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux server	scope:	eq	version:	8	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	6.0	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	7	Trust: 0.8
vendor:	turbo linux	model:	turbolinux workstation	scope:	eq	version:	8	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.00	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.04	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.11	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.22	Trust: 0.8
vendor:	hewlett packard	model:	hp-ux	scope:	eq	version:	11.23	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.1	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.2	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	7.3	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	8.0	Trust: 0.8
vendor:	red hat	model:	linux	scope:	eq	version:	9	Trust: 0.8
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.04	Trust: 0.6
vendor:	compaq	model:	tru64 pk4	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.5	Trust: 0.3
vendor:	compaq	model:	tru64 f pk6	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta10	scope:	eq	version:	8.12	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.23	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.10	Trust: 0.3
vendor:	hp	model:	nonstop-ux whitney	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.22	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6.2	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	6.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.3	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.7	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.6	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.5	Trust: 0.3
vendor:	gentoo	model:	linux rc3	scope:	eq	version:	1.4	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.2	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.3	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.1	Trust: 0.3
vendor:	gentoo	model:	linux rc1	scope:	eq	version:	1.4	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.23	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta5	scope:	eq	version:	8.12	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.6	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.7	Trust: 0.3
vendor:	compaq	model:	tru64 g pk3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta16	scope:	eq	version:	8.12	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.5x86	Trust: 0.3
vendor:	sendmail	model:	inc sendmail advanced message server	scope:	eq	version:	1.2	Trust: 0.3
vendor:	compaq	model:	tru64 b pk2	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.04	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.8	Trust: 0.3
vendor:	compaq	model:	tru64 a pk5	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.4	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.2	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.8	Trust: 0.3
vendor:	compaq	model:	tru64 g	scope:	eq	version:	4.0	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.0	Trust: 0.3
vendor:	hp	model:	nonstop-ux puma	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail pro	scope:	eq	version:	8.9.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.1	Trust: 0.3
vendor:	netbsd	model:	beta	scope:	eq	version:	1.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.3	Trust: 0.3
vendor:	compaq	model:	tru64 f pk7	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.2	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.2	Trust: 0.3
vendor:	compaq	model:	tru64 pk6	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f pk8	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.5	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.4	Trust: 0.3
vendor:	sun	model:	cobalt raq	scope:	eq	version:	4	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.2	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.8.8	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	3.0.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta12	scope:	eq	version:	8.12	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.0	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.2	Trust: 0.3
vendor:	netbsd	model:	sh3	scope:	eq	version:	1.5	Trust: 0.3
vendor:	sendmail	model:	inc sendmail advanced message server	scope:	eq	version:	1.3	Trust: 0.3
vendor:	hp	model:	altavista firewall avfw98	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.3	Trust: 0.3
vendor:	compaq	model:	tru64 a pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 b pk1	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.4	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.9	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.4	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0	Trust: 0.3
vendor:	compaq	model:	tru64	scope:	eq	version:	5.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2	Trust: 0.3
vendor:	hp	model:	internet express	scope:	eq	version:	5.4	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail beta7	scope:	eq	version:	8.12	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.11	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.6	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10.2	Trust: 0.3
vendor:	compaq	model:	tru64 a pk2	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	3.0	Trust: 0.3
vendor:	hp	model:	hp-ux b.11.00	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.2.5	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.3	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.4	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.3	Trust: 0.3
vendor:	compaq	model:	tru64 a	scope:	eq	version:	5.1	Trust: 0.3
vendor:	hp	model:	alphaserver sc	scope:	-	version:	-	Trust: 0.3
vendor:	compaq	model:	tru64 pk5	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 f	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	inc sendmail switch	scope:	eq	version:	2.1.1	Trust: 0.3
vendor:	gentoo	model:	linux a	scope:	eq	version:	1.1	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.4	Trust: 0.3
vendor:	apple	model:	mac os server	scope:	eq	version:	x10.2.2	Trust: 0.3
vendor:	compaq	model:	tru64 b	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.9.1	Trust: 0.3
vendor:	compaq	model:	tru64 g pk4	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.11.2	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6	Trust: 0.3
vendor:	sendmail	model:	inc sendmail for nt	scope:	eq	version:	2.6.1	Trust: 0.3
vendor:	apple	model:	mac os	scope:	eq	version:	x10.2.3	Trust: 0.3
vendor:	compaq	model:	tru64 a pk3	scope:	eq	version:	5.1	Trust: 0.3
vendor:	compaq	model:	tru64 a pk4	scope:	eq	version:	5.1	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.12.9	Trust: 0.3
vendor:	gentoo	model:	linux rc2	scope:	eq	version:	1.4	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.20	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	ne	version:	8.12.10	Trust: 0.3
vendor:	sendmail	model:	consortium sendmail	scope:	eq	version:	8.10.1	Trust: 0.3
vendor:	hp	model:	altavista firewall raptor ec	scope:	-	version:	-	Trust: 0.3
vendor:	sendmail	model:	inc sendmail pro	scope:	eq	version:	8.9.2	Trust: 0.3

sources: CERT/CC: VU#108964 // BID: 8649 // JVNDB: JVNDB-2003-000277 // CNNVD: CNNVD-200310-016 // NVD: CVE-2003-0681

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-0681
value:	HIGH
Trust: 1.0
CARNEGIE MELLON:	VU#108964
value:	6.33
Trust: 0.8
NVD:	CVE-2003-0681
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-200310-016
value:	HIGH
Trust: 0.6
VULHUB:	VHN-7506
value:	HIGH
Trust: 0.1
VULMON:	CVE-2003-0681
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2003-0681
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
VULHUB:	VHN-7506
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CERT/CC: VU#108964 // VULHUB: VHN-7506 // VULMON: CVE-2003-0681 // JVNDB: JVNDB-2003-000277 // CNNVD: CNNVD-200310-016 // NVD: CVE-2003-0681

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0681

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200310-016

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200310-016

CONFIGURATIONS

sources: JVNDB: JVNDB-2003-000277

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-7506 // VULMON: CVE-2003-0681

PATCH

title:	HPSBUX00281	url:	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01035741	Trust: 0.8
title:	RHSA-2003:283	url:	https://rhn.redhat.com/errata/RHSA-2003-283.html	Trust: 0.8
title:	8.12.10	url:	http://www.sendmail.org/8.12.10.html	Trust: 0.8
title:	57573	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57573-1	Trust: 0.8
title:	56922	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56922-1	Trust: 0.8
title:	57573	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-57573-3	Trust: 0.8
title:	56922	url:	http://sunsolve.sun.com/search/document.do?assetkey=1-26-56922-3	Trust: 0.8
title:	4 Sendmail Security Update 2.0.2	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq4.eng&nav=patchpage	Trust: 0.8
title:	XTR Sendmail Security Update 1.0.1	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raqxtr.eng&nav=patchpage	Trust: 0.8
title:	550 Sendmail Security Update 0.0.1	url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq550.eng&nav=patchpage	Trust: 0.8
title:	TLSA-2003-52	url:	http://www.turbolinux.com/security/2003/TLSA-2003-52.txt	Trust: 0.8
title:	RHSA-2003:283	url:	http://www.jp.redhat.com/support/errata/RHSA/RHSA-2003-283J.html	Trust: 0.8
title:	TLSA-2003-52	url:	http://www.turbolinux.co.jp/security/2003/TLSA-2003-52j.txt	Trust: 0.8
title:	Debian Security Advisories: DSA-384-1 sendmail -- buffer overflows	url:	https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories&qid=243b978e3f17d13dd590ac7cfc4a472f	Trust: 0.1
title:	x0rzEQGRP	url:	https://github.com/happysmack/x0rzEQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Nekkidso/EQGRP	Trust: 0.1
title:	test	url:	https://github.com/DevKosov/test	Trust: 0.1
title:	EQGRP	url:	https://github.com/hackcrypto/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Ninja-Tw1sT/EQGRP	Trust: 0.1
title:	leaked2	url:	https://github.com/kongjiexi/leaked2	Trust: 0.1
title:	EQGRP	url:	https://github.com/391861737/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/Muhammd/EQGRP	Trust: 0.1
title:	ShadowBrokersFiles	url:	https://github.com/R3K1NG/ShadowBrokersFiles	Trust: 0.1
title:	EQGRP	url:	https://github.com/CKmaenn/EQGRP	Trust: 0.1
title:	EQGRP_Linux	url:	https://github.com/CybernetiX-S3C/EQGRP_Linux	Trust: 0.1
title:	EQGRP	url:	https://github.com/IHA114/EQGRP	Trust: 0.1
title:	ShadowBrokersFiles	url:	https://github.com/antiscammerarmy/ShadowBrokersFiles	Trust: 0.1
title:	shadowbrokerstuff	url:	https://github.com/thetrentusdev/shadowbrokerstuff	Trust: 0.1
title:	bdhglopoj	url:	https://github.com/maxcvnd/bdhglopoj	Trust: 0.1
title:	shadowbrokerstuff	url:	https://github.com/shakenetwork/shadowbrokerstuff	Trust: 0.1
title:	x0rz-EQGRP	url:	https://github.com/r3p3r/x0rz-EQGRP	Trust: 0.1
title:	ShadowBrokersStuff	url:	https://github.com/thetrentus/ShadowBrokersStuff	Trust: 0.1
title:	EQ1	url:	https://github.com/thePevertedSpartan/EQ1	Trust: 0.1
title:	EQGRP	url:	https://github.com/Badbug6/EQGRP	Trust: 0.1
title:	EQGRP-nasa	url:	https://github.com/Soldie/EQGRP-nasa	Trust: 0.1
title:	EQGRP	url:	https://github.com/Mofty/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/thetrentus/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/NamanGangwar/EQGRP	Trust: 0.1
title:	EQGRP	url:	https://github.com/x0rz/EQGRP	Trust: 0.1
title:	SB--.-HACK-the-EQGRP-1	url:	https://github.com/cipherreborn/SB--.-HACK-the-EQGRP-1	Trust: 0.1

sources: VULMON: CVE-2003-0681 // JVNDB: JVNDB-2003-000277

EXTERNAL IDS

db:	NVD	id:	CVE-2003-0681	Trust: 2.9
db:	CERT/CC	id:	VU#108964	Trust: 2.8
db:	BID	id:	8649	Trust: 2.3
db:	XF	id:	13216	Trust: 0.8
db:	JVNDB	id:	JVNDB-2003-000277	Trust: 0.8
db:	CNNVD	id:	CNNVD-200310-016	Trust: 0.7
db:	EXPLOIT-DB	id:	23154	Trust: 0.2
db:	SEEBUG	id:	SSVID-76930	Trust: 0.1
db:	VULHUB	id:	VHN-7506	Trust: 0.1
db:	VULMON	id:	CVE-2003-0681	Trust: 0.1

sources: CERT/CC: VU#108964 // VULHUB: VHN-7506 // VULMON: CVE-2003-0681 // BID: 8649 // JVNDB: JVNDB-2003-000277 // CNNVD: CNNVD-200310-016 // NVD: CVE-2003-0681

REFERENCES

url:	http://www.securityfocus.com/bid/8649	Trust: 2.1
url:	http://www.kb.cert.org/vuls/id/108964	Trust: 2.0
url:	http://www.sendmail.org/8.12.10.html	Trust: 1.5
url:	http://www.debian.org/security/2003/dsa-384	Trust: 1.2
url:	http://www.mandriva.com/security/advisories?name=mdksa-2003:092	Trust: 1.2
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a3606	Trust: 1.2
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a595	Trust: 1.2
url:	http://www.redhat.com/support/errata/rhsa-2003-283.html	Trust: 1.2
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/13216	Trust: 1.2
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000742	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=106383437615742&w=2	Trust: 1.1
url:	http://marc.info/?l=bugtraq&m=106398718909274&w=2	Trust: 1.1
url:	http://www.sendmail.com	Trust: 0.8
url:	http://www.sendmail.org	Trust: 0.8
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2003-0681	Trust: 0.8
url:	http://xforce.iss.net/xforce/xfdb/13216	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2003-0681	Trust: 0.8
url:	http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000746	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2f56922	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57573	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/qube3.eng&nav=patchpage	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raq4.eng&nav=patchpage	Trust: 0.3
url:	http://sunsolve.sun.com/pub-cgi/show.pl?target=cobalt/raqxtr.eng&nav=patchpage	Trust: 0.3
url:	http://marc.info/?l=bugtraq&m=106383437615742&w=2	Trust: 0.1
url:	http://marc.info/?l=bugtraq&m=106398718909274&w=2	Trust: 0.1
url:	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000742	Trust: 0.1
url:	-	Trust: 0.1
url:	https://cwe.mitre.org/data/definitions/.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://www.exploit-db.com/exploits/23154/	Trust: 0.1
url:	https://github.com/hackcrypto/eqgrp	Trust: 0.1
url:	https://www.debian.org/security/./dsa-384	Trust: 0.1

sources: CERT/CC: VU#108964 // VULHUB: VHN-7506 // VULMON: CVE-2003-0681 // BID: 8649 // JVNDB: JVNDB-2003-000277 // NVD: CVE-2003-0681

CREDITS

Discovery of this vulnerability has been credited to Timo Sirainen.

Trust: 0.9

sources: BID: 8649 // CNNVD: CNNVD-200310-016

SOURCES

db:	CERT/CC	id:	VU#108964
db:	VULHUB	id:	VHN-7506
db:	VULMON	id:	CVE-2003-0681
db:	BID	id:	8649
db:	JVNDB	id:	JVNDB-2003-000277
db:	CNNVD	id:	CNNVD-200310-016
db:	NVD	id:	CVE-2003-0681

LAST UPDATE DATE

2024-08-14T14:00:48.032000+00:00

SOURCES UPDATE DATE

db:	CERT/CC	id:	VU#108964	date:	2003-09-18T00:00:00
db:	VULHUB	id:	VHN-7506	date:	2018-05-03T00:00:00
db:	VULMON	id:	CVE-2003-0681	date:	2018-05-03T00:00:00
db:	BID	id:	8649	date:	2007-09-22T00:30:00
db:	JVNDB	id:	JVNDB-2003-000277	date:	2007-08-28T00:00:00
db:	CNNVD	id:	CNNVD-200310-016	date:	2006-08-24T00:00:00
db:	NVD	id:	CVE-2003-0681	date:	2018-05-03T01:29:21.663

SOURCES RELEASE DATE

db:	CERT/CC	id:	VU#108964	date:	2003-09-18T00:00:00
db:	VULHUB	id:	VHN-7506	date:	2003-10-06T00:00:00
db:	VULMON	id:	CVE-2003-0681	date:	2003-10-06T00:00:00
db:	BID	id:	8649	date:	2003-09-17T00:00:00
db:	JVNDB	id:	JVNDB-2003-000277	date:	2007-04-01T00:00:00
db:	CNNVD	id:	CNNVD-200310-016	date:	2003-10-06T00:00:00
db:	NVD	id:	CVE-2003-0681	date:	2003-10-06T04:00:00