VDB-94849 · OSVDB 15961

Sendmail uucp Account .forward File privileges management

entryeditHistoryDiffjsonxmlCTI

A vulnerability was found in Sendmail (Mail Server Software) (affected version unknown). It has been declared as critical. Affected by this vulnerability is some unknown processing of the file .forward of the component uucp Account Handler. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

User

Field

Commit Conf

Approve Conf

IDCommitedUserFieldChangeRemarksModeratedReasonC
624656907/13/2020VulD...cwe269 (privilege escalation)07/13/2020accepted90
624654107/13/2020VulD...typeMail Server Software07/13/2020accepted100
624658401/02/2017VulD...cvss3_vuldb_sU01/02/2017accepted60
624658301/02/2017VulD...cvss3_vuldb_prL01/02/2017accepted60
624658201/02/2017VulD...cvss3_vuldb_acL01/02/2017accepted60
624658101/02/2017VulD...cvss3_vuldb_avL01/02/2017accepted60
624658001/02/2017VulD...cvss2_vuldb_auS01/02/2017accepted60
624657901/02/2017VulD...cvss2_vuldb_acM01/02/2017accepted60
624657801/02/2017VulD...cvss2_vuldb_avL01/02/2017accepted60
624657701/02/2017VulD...cvss3_vuldb_rcX01/02/2017accepted90
624657601/02/2017VulD...cvss3_vuldb_rlX01/02/2017accepted90
624657501/02/2017VulD...cvss3_vuldb_eP01/02/2017accepted90
624657401/02/2017VulD...cvss2_vuldb_rcND01/02/2017accepted90
624657301/02/2017VulD...cvss2_vuldb_rlND01/02/2017accepted90
624657201/02/2017VulD...cvss2_vuldb_ePOC01/02/2017accepted90
624657101/02/2017VulD...locationWebsite01/02/2017accepted90
624657001/02/2017VulD...cvss3_vuldb_uiN01/02/2017accepted90
624656801/02/2017VulD...seealso9483101/02/2017accepted100
624656701/02/2017VulD...osvdb_titleSendmail uucp Account .forward Arbitrary File Access01/02/2017accepted100
624656601/02/2017VulD...osvdb_create111476961201/02/2017accepted100

Interested in the pricing of exploits?

See the underground prices here!