CVE-2006-4434

Properties

Published:: 27.08.2006
Updated:: 30.08.2006
Patch available:
Severity:: Low
CVSS vector:: (AV:R/AC:L/Au:NR/C:N/I:N/A:P/B:N)
Product:: Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail
Sendmail Consortium: Sendmail

Vulnerability description

Use-after-free vulnerability in Sendmail before 8.13.8 allows remote attackers to cause a denial of service (crash) via a long"header line", which causes a previously freed variable to be referenced.

References:

http://www.sendmail.org/releases/8.13.8.html: http://www.sendmail.org/releases/8.13.8.html
OPENBSD: http://www.openbsd.org/errata38.html#sendmail3
OPENBSD: http://www.openbsd.org/errata.html#sendmail3
BID: http://www.securityfocus.com/bid/19714
SECTRACK: http://securitytracker.com/id?1016753
SECUNIA: http://secunia.com/advisories/21637
SECUNIA: http://secunia.com/advisories/21641

Vulnerabilities

10.06.2016

CVE-2016-5233

Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before NXT-CL00C92B182, NXT-DL00 before NXT-DL00C17B182, and NXT-TL00 before NXT-TL00C01B182 allow remote base stations to obtain sensitive subscriber signal strength information via vectors involving improper security status verification, aka HWPSIRT-2015-12007.

10.06.2016

CVE-2016-5118

The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | (pipe) character at the start of a filename.

10.06.2016

CVE-2016-4429

Stack-based buffer overflow in the clntudp_call function in sunrpc/clnt_udp.c in the GNU C Library (aka glibc or libc6) allows remote servers to cause a denial of service (crash) or possibly unspecified other impact via a flood of crafted ICMP and UDP packets.

10.06.2016

CVE-2016-3720

XML external entity (XXE) vulnerability in XmlMapper in the Data format extension for Jackson (aka jackson-dataformat-xml) allows attackers to have unspecified impact via unknown vectors.

10.06.2016

CVE-2016-3706

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in the GNU C Library (aka glibc or libc6) allows remote attackers to cause a denial of service (crash) via vectors involving hostent conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4458.

10.06.2016

CVE-2016-3085

Apache CloudStack 4.5.x before 4.5.2.1, 4.6.x before 4.6.2.1, 4.7.x before 4.7.1.1, and 4.8.x before 4.8.0.1, when SAML-based authentication is enabled and used, allow remote attackers to bypass authentication and access the user interface via vectors related to the SAML plugin.