What is CVE-2003-0161?

CVE-2003-0161 is a vulnerability in N/a. Published 2003-04-01.

Is CVE-2003-0161 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-0161

The prescan() function in the address parser (parseaddr.c) in Sendmail before 8.12.9 does not properly handle certain conversions from char and int types, which can cause a length check to be disabled when Sendmail misinterprets an input v…

EPSS: 0.679 (98.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

byte-mug/cumes

References

1001088 (vendor-advisory, x_refsource_SUNALERT)
52620 (vendor-advisory, x_refsource_SUNALERT)
7230 (vdb-entry, x_refsource_BID)
20030330 [OpenPKG-SA-2003.027] OpenPKG Security Advisory (sendmail) (mailing-list, x_refsource_BUGTRAQ)
RHSA-2003:120 (x_refsource_REDHAT, vendor-advisory)
20030401 Immunix Secured OS 7+ openssl update (mailing-list, vendor-advisory, x_refsource_BUGTRAQ, x_refsource_IMMUNIX)
DSA-278 (vendor-advisory, x_refsource_DEBIAN)
DSA-290 (vendor-advisory, x_refsource_DEBIAN)
lists.apple.com/mhonarc/security-announce/msg00028.html (x_refsource_CONFIRM)
52700 (vendor-advisory, x_refsource_SUNALERT)

Frequently asked questions

What is CVE-2003-0161?: CVE-2003-0161 is a vulnerability in N/a. Published 2003-04-01.
Is CVE-2003-0161 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.