CVSS: 5.0EPSS: 34%CPEs: 41EXPL: 0CVE-2006-1173
https://notcve.org/view.php?id=CVE-2006-1173
Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering queued messages and might lead to disk consumption by core dump files. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:17.sendmail.asc ftp://patches.sgi.com/support/free/security/advisories/20060601-01-P ftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.asc http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635 http://lists.suse.com/archive/suse-security-announce/2006-Jun/0006.html http://secunia.com/advisories/15779 http://secunia.com/advisories/20473 http://secunia.com/advisories/20641 http://secunia. • CWE-399: Resource Management Errors •
CVSS: 7.6EPSS: 94%CPEs: 6EXPL: 1CVE-2006-0058 – Sendmail 8.13.5 - Remote Signal Handling (PoC)
https://notcve.org/view.php?id=CVE-2006-0058
Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations. • https://www.exploit-db.com/exploits/2051 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&am •