CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0203

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0030%
EPSS Percentile6.29th
PublishedAug 17, 1995
Last ModifiedApr 16, 2026

Vulnerability Description

In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program.

Affected Platforms (CPE)

📦
Eric Allman

Sendmail

= 8.6.10

References & Advisories

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0203
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0203

Related Vulnerabilities

CVE-1999-009510.0

The debug command in Sendmail is enabled, allowing attackers to execute commands as root.

CVE-1999-020410.0

Sendmail 8.6.9 allows remote attackers to execute root commands, using ident.

CVE-1999-056510.0

A Sendmail alias allows input to be piped to a program.

CVE-1999-020610.0

MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access.