CVE-2003-0688 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2003-0688
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0688

Description: The DNS map code in Sendmail 8.12.8 and earlier, when using the "enhdnsbl" feature, does not properly initialize certain data structures, which allows remote attackers to cause a denial of service (process crash) via an invalid DNS response that causes Sendmail to free incorrect data.

CVE Status: Candidate

References: SUSE http://www.novell.com/linux/security/advisories/2003_035_sendmail.html SGI REDHAT http://www.redhat.com/support/errata/RHSA-2003-265.html OVAL http://oval.mitre.org/oval/definitions/data/oval597.html MANDRAKE http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:086 FREEBSD CONFIRM http://www.sendmail.org/dnsmap1.html CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000727 CERT-VN 993452

Return to the previous page.