CVE-1999-0203

CVSS 2.0 Score 10 of 10 (high)

Details

Published Aug 17, 1995

Updated: Nov 20, 2024

Summary

CVE-1999-0203 is a vulnerability affecting Sendmail, an email transfer agent. Attackers can exploit this issue by sending a malicious email with an improper "mail from" address and an invalid "rcpt to" address. If the email bounces, it can execute a command as the root user due to a misconfiguration in how Sendmail handles bounced emails. This flaw can result in a serious compromise of the affected system. To mitigate this risk, it's essential to apply the available patch or update Sendmail to a secure version.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlL0N
https://www.cve.org/CVERecord?id=CVE-1999-0203
https://nvd.nist.gov/vuln/detail/CVE-1999-0203

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners

CVE-1999-0203

CVSS 2.0 Score 10 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations