Title: Sendmail Headers Prescan Denial Of Service Vulnerability
Severity: HIGH
Description:
Sendmail is a widely used MTA for Unix and Microsoft Windows systems.
Sendmail has been reported prone to a denial of service vulnerability when handling malicious SMTP mail headers. The vulnerability has been reported to present itself, due to an inefficient implementation of a header prescan algorithm.
A remote attacker may reportedly deny service to legitimate users by sending two or three specially crafted emails each of approximately 200kb in size to the affected service. Because the malicious messages are parsed at least twice, this attack may render the service unusable for an extended period of time.
*** November 20, 2003 - This BID was erroneously updated today regarding the release of IBM AIX APARs released to address the Sendmail vulnerability described in BID 8641. The appropriate updates and changes have been made.
Affected Products:
- Compaq Tru64 4.0.0 f PK7 (BL18)
- Compaq Tru64 4.0.0 g PK3 (BL17)
- SGI IRIX 6.5.0
- SGI IRIX 6.5.1
- SGI IRIX 6.5.2
- SGI IRIX 6.5.3
- SGI IRIX 6.5.4
- SGI IRIX 6.5.5
- SGI IRIX 6.5.6
- Sendmail Consortium Sendmail 8.8.8
- Sendmail Consortium Sendmail 8.9.0.0
- Sendmail Consortium Sendmail 8.9.1
- Sendmail Consortium Sendmail 8.9.2
References:
- Michal Zalewski: Sendmail 8.8.x/8.9.x bugware
- Sendmail Consortium: Sendmail Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
