← back
CVE-1999-1580

CVE-1999-1580

EPSS 1.1%
SunOS sendmail 5.59 through 5.65 uses popen to process a forwarding host argument, which allows local users to gain root privileges by modifying the IFS (Internal Field Separator) variable and passing crafted values to the -oR option.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.alw.nih.gov/Security/8lgm/8lgm-Advisory-21.htmlhttp://www.auscert.org.au/render.html?it=1853&cid=1978http://www.cert.org/advisories/CA-95.11.sun.sendmail-oR.vulhttp://www.kb.cert.org/vuls/id/3278http://www.securityfocus.com/bid/7829