Vulnerability Details : CVE-1999-0131
Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.
Vulnerability category: OverflowDenial of service
Exploit prediction scoring system (EPSS) score for CVE-1999-0131
Probability of exploitation activity in the next 30 days: 0.04%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ
CVSS scores for CVE-1999-0131
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
References for CVE-1999-0131
Products affected by CVE-1999-0131
- cpe:2.3:a:eric_allman:sendmail:8.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:eric_allman:sendmail:8.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:eric_allman:sendmail:8.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:eric_allman:sendmail:8.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:eric_allman:sendmail:8.7.5:*:*:*:*:*:*:*
- cpe:2.3:a:eric_allman:sendmail:8.6:*:*:*:*:*:*:*
- cpe:2.3:o:freebsd:freebsd:2.1.5:*:*:*:*:*:*:*
- cpe:2.3:o:digital:osf_1:1.3.2:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:10.01:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*
- cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:4.1:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:4.2:*:*:*:*:*:*:*
- cpe:2.3:o:ibm:aix:3.2:*:*:*:*:*:*:*
- cpe:2.3:o:sco:openserver:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:sco:openserver:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:o:sco:internet_faststart:1.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:linux:3.0.3:*:*:*:*:*:*:*
- cpe:2.3:o:bsdi:bsd_os:2.1:*:*:*:*:*:*:*