CVE-1999-0439

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Apr 5, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-0439 is a buffer overflow vulnerability affecting procmail before version 3.12. This issue enables remote or local attackers to execute arbitrary commands by exploiting expansions in the procmailrc configuration file. An attacker could send a specially crafted email or gain local access to trigger the vulnerability and execute malicious code. This vulnerability poses a significant risk, as it can lead to serious system compromise. It is strongly recommended that users upgrade to a patched version of procmail to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share