Vulnerabilities > CVE-2002-0906 - Buffer Overflow vulnerability in Sendmail DNS Map TXT Record
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Buffer overflow in Sendmail before 8.12.5, when configured to use a custom DNS map to query TXT records, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malicious DNS server.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Nessus
NASL family | SMTP problems |
NASL id | SENDMAIL_DNS_MAP_TXT_OVERFLOW.NASL |
description | The remote Sendmail server, according to its version number, may be vulnerable to a buffer overflow in its DNS handling code. The owner of a malicious name server could use this flaw to cause a denial of service and possibly to execute arbitrary code on this host. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11232 |
published | 2003-02-17 |
reporter | This script is Copyright (C) 2003-2018 and is owned by Tenable, Inc. or an Affiliate thereof. |
source | https://www.tenable.com/plugins/nessus/11232 |
title | Sendmail Custom DNS Map TXT Query Overflow |
code |
|
Oval
accepted | 2005-05-11T05:41:00.000-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
description | Buffer overflow in Sendmail before 8.12.5, when configured to use a custom DNS map to query TXT records, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a malicious DNS server. | ||||||||
family | unix | ||||||||
id | oval:org.mitre.oval:def:2183 | ||||||||
status | accepted | ||||||||
submitted | 2004-12-22T12:00:00.000-04:00 | ||||||||
title | Sendmail Custom DNS Map Buffer Overflow | ||||||||
version | 35 |