CVE-1999-0203

CVSS 2.0 Score 10.0 of 10 (high)

Details

Published Aug 17, 1995

Updated: Nov 20, 2024

Summary

CVE-1999-0203 is a vulnerability affecting the Sendmail email server. This issue allows attackers to exploit an incorrect handling of "mail from" and "rcpt to" addresses during SMTP transactions. By specifying an inappropriate "mail from" address and an invalid "rcpt to" address, attackers can trigger the delivery of a bounced email to a malicious program, potentially resulting in the gain of root privileges. This vulnerability poses a significant threat to Sendmail servers and requires immediate patching to prevent potential unauthorized system access.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlL0N
https://www.cve.org/CVERecord?id=CVE-1999-0203
https://nvd.nist.gov/vuln/detail/CVE-1999-0203

Back to Vulnerability Database

CVE-1999-0203

CVSS 2.0 Score 10.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations