CVE-1999-0145

CVSS 2.0 Score 7.2 of 10 (high)

Details

Published Sep 30, 1993

Updated: Nov 20, 2024

Summary

CVE-1999-0145 is a vulnerability affecting Sendmail email servers. An attacker can exploit this weakness by using the WIZ (Wizard) command, which is enabled by default, to gain root access to the system. The WIZ feature, intended for configuration assistance, can be exploited to execute arbitrary commands with elevated privileges. This vulnerability poses a significant risk to the security of Sendmail servers and requires immediate remediation through disabling the WIZ command or upgrading to a patched version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlJ1c
https://www.cve.org/CVERecord?id=CVE-1999-0145
https://nvd.nist.gov/vuln/detail/CVE-1999-0145

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-1999-0145

CVSS 2.0 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations