CVE-2002-1165

Sendmail 8.12.x - SMRSH Double Pipe Access Validation

Severity Score

4.6

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2) "/" characters, which are not properly filtered or verified.

Sendmail Consortium's Restricted Shell (SMRSH) en Sendmail 8.12.6, 8.11.6-15 y anteriores, permite a atacantes puentear las restricciones pretendidas de smrsh insertando caractéres adicionales después de secuencias "||" (dos barras verticales) o "/" (barra), que no son adecuadamente filtradas o verificadas.

*Credits: N/A

CVSS Scores

NISTv2 4.6

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2002-09-27 CVE Reserved
2002-10-01 First Exploit
2002-10-03 CVE Published
2024-02-08 EPSS Updated
2024-08-08 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (12)

URL	Tag	Source
http://marc.info/?l=bugtraq&m=103350914307274&w=2	Mailing List
http://secunia.com/advisories/7826	Third Party Advisory

URL	Date	SRC
https://www.exploit-db.com/exploits/21884	2002-10-01
http://www.securityfocus.com/bid/5845	2024-08-08
http://www.sendmail.org/smrsh.adv.txt	2024-08-08

URL	Date	SRC

URL	Date	SRC
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-023.txt.asc	2016-10-18
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000532	2016-10-18
http://www.iss.net/security_center/static/10232.php	2016-10-18
http://www.mandriva.com/security/advisories?name=MDKSA-2002:083	2016-10-18
http://www.redhat.com/support/errata/RHSA-2003-073.html	2016-10-18
https://access.redhat.com/security/cve/CVE-2002-1165	2003-07-08
https://bugzilla.redhat.com/show_bug.cgi?id=1616854	2003-07-08

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.0 Search vendor "Sendmail" for product "Sendmail" and version "8.12.0"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.1 Search vendor "Sendmail" for product "Sendmail" and version "8.12.1"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.2 Search vendor "Sendmail" for product "Sendmail" and version "8.12.2"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.3 Search vendor "Sendmail" for product "Sendmail" and version "8.12.3"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.4 Search vendor "Sendmail" for product "Sendmail" and version "8.12.4"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.5 Search vendor "Sendmail" for product "Sendmail" and version "8.12.5"		-		Affected
Sendmail Search vendor "Sendmail"		Sendmail Search vendor "Sendmail" for product "Sendmail"				8.12.6 Search vendor "Sendmail" for product "Sendmail" and version "8.12.6"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.5 Search vendor "Netbsd" for product "Netbsd" and version "1.5"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.5.1 Search vendor "Netbsd" for product "Netbsd" and version "1.5.1"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.5.2 Search vendor "Netbsd" for product "Netbsd" and version "1.5.2"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.5.3 Search vendor "Netbsd" for product "Netbsd" and version "1.5.3"		-		Affected
Netbsd Search vendor "Netbsd"		Netbsd Search vendor "Netbsd" for product "Netbsd"				1.6 Search vendor "Netbsd" for product "Netbsd" and version "1.6"		-		Affected