CVE-2002-1337 - Vulnerability Details

Vendors	Products
Gentoo	Linux
Hp	Alphaserver Sc Hp-ux
Netbsd	Netbsd
Oracle	Solaris
Redhat	Enterprise Linux Linux
Sendmail	Sendmail
Sun	Sunos
Windriver	Bsdos Platform Sa

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux AS (Advanced Server) version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2003:074	2003-03-03T00:00:00Z
Red Hat Enterprise Linux ES version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2003:074	2003-03-03T00:00:00Z
Red Hat Enterprise Linux WS version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2003:074	2003-03-03T00:00:00Z
Red Hat Linux 6.2
	cpe:/o:redhat:linux:6.2	RHSA-2003:073	2003-03-03T00:00:00Z
Red Hat Linux 7.0
	cpe:/o:redhat:linux:7.0	RHSA-2003:073	2003-03-03T00:00:00Z
Red Hat Linux 7.1
	cpe:/o:redhat:linux:7.1	RHSA-2003:073	2003-03-03T00:00:00Z
	cpe:/o:redhat:linux:7.1	RHSA-2003:227	2003-07-08T00:00:00Z
Red Hat Linux 7.2
	cpe:/o:redhat:linux:7.2	RHSA-2003:073	2003-03-03T00:00:00Z
Red Hat Linux 7.3
	cpe:/o:redhat:linux:7.3	RHSA-2003:073	2003-03-03T00:00:00Z
Red Hat Linux 8.0
	cpe:/o:redhat:linux:8.0	RHSA-2003:073	2003-03-03T00:00:00Z
Red Hat Linux Advanced Workstation 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2003:074	2003-03-03T00:00:00Z

Link	Providers
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc
ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6
ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5
ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028
http://marc.info/?l=bugtraq&m=104673778105192&w=2
http://marc.info/?l=bugtraq&m=104678739608479&w=2
http://marc.info/?l=bugtraq&m=104678862109841&w=2
http://marc.info/?l=bugtraq&m=104678862409849&w=2
http://marc.info/?l=bugtraq&m=104679411316818&w=2
http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only
http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only
http://www.cert.org/advisories/CA-2003-07.html
http://www.debian.org/security/2003/dsa-257
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
http://www.iss.net/security_center/static/10748.php
http://www.kb.cert.org/vuls/id/398025
http://www.redhat.com/support/errata/RHSA-2003-073.html
http://www.redhat.com/support/errata/RHSA-2003-074.html
http://www.redhat.com/support/errata/RHSA-2003-227.html
http://www.securityfocus.com/bid/6991
http://www.sendmail.org/8.12.8.html
https://nvd.nist.gov/vuln/detail/CVE-2002-1337
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222
https://www.cve.org/CVERecord?id=CVE-2002-1337

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2003-03-03T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2010-05-21T00:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "RHSA-2003:073", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-073.html"}, {"name": "20030301-01-P", "tags": ["vendor-advisory", "x_refsource_SGI"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P"}, {"name": "IY40501", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only"}, {"name": "20030303 Fwd: APPLE-SA-2003-03-03 sendmail", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=104678862109841&w=2"}, {"name": "RHSA-2003:227", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-227.html"}, {"name": "6991", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/6991"}, {"name": "VU#398025", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/398025"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.sendmail.org/8.12.8.html"}, {"name": "DSA-257", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2003/dsa-257"}, {"name": "20030304 [LSD] Technical analysis of the remote sendmail vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=104678739608479&w=2"}, {"name": "oval:org.mitre.oval:def:2222", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222"}, {"name": "RHSA-2003:074", "tags": ["vendor-advisory", "x_refsource_REDHAT"], "url": "http://www.redhat.com/support/errata/RHSA-2003-074.html"}, {"name": "CA-2003-07", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.cert.org/advisories/CA-2003-07.html"}, {"name": "20030303 sendmail 8.12.8 available", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=104673778105192&w=2"}, {"name": "MDKSA-2003:028", "tags": ["vendor-advisory", "x_refsource_MANDRAKE"], "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028"}, {"name": "IY40500", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only"}, {"name": "sendmail-header-processing-bo(10748)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10748.php"}, {"name": "CSSA-2003-SCO.6", "tags": ["vendor-advisory", "x_refsource_CALDERA"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6"}, {"name": "CSSA-2003-SCO.5", "tags": ["vendor-advisory", "x_refsource_CALDERA"], "url": "ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5"}, {"name": "CLA-2003:571", "tags": ["vendor-advisory", "x_refsource_CONECTIVA"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571"}, {"name": "NetBSD-SA2003-002", "tags": ["vendor-advisory", "x_refsource_NETBSD"], "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc"}, {"name": "HPSBUX0302-246", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "http://marc.info/?l=bugtraq&m=104679411316818&w=2"}, {"name": "20030303 Remote Sendmail Header Processing Vulnerability", "tags": ["third-party-advisory", "x_refsource_ISS"], "url": "http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950"}, {"name": "IY40502", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only"}, {"name": "20030304 GLSA:  sendmail (200303-4)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=104678862409849&w=2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1337", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "RHSA-2003:073", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-073.html"}, {"name": "20030301-01-P", "refsource": "SGI", "url": "ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P"}, {"name": "IY40501", "refsource": "AIXAPAR", "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only"}, {"name": "20030303 Fwd: APPLE-SA-2003-03-03 sendmail", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=104678862109841&w=2"}, {"name": "RHSA-2003:227", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-227.html"}, {"name": "6991", "refsource": "BID", "url": "http://www.securityfocus.com/bid/6991"}, {"name": "VU#398025", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/398025"}, {"name": "http://www.sendmail.org/8.12.8.html", "refsource": "CONFIRM", "url": "http://www.sendmail.org/8.12.8.html"}, {"name": "DSA-257", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2003/dsa-257"}, {"name": "20030304 [LSD] Technical analysis of the remote sendmail vulnerability", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=104678739608479&w=2"}, {"name": "oval:org.mitre.oval:def:2222", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222"}, {"name": "RHSA-2003:074", "refsource": "REDHAT", "url": "http://www.redhat.com/support/errata/RHSA-2003-074.html"}, {"name": "CA-2003-07", "refsource": "CERT", "url": "http://www.cert.org/advisories/CA-2003-07.html"}, {"name": "20030303 sendmail 8.12.8 available", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=104673778105192&w=2"}, {"name": "MDKSA-2003:028", "refsource": "MANDRAKE", "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028"}, {"name": "IY40500", "refsource": "AIXAPAR", "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only"}, {"name": "sendmail-header-processing-bo(10748)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10748.php"}, {"name": "CSSA-2003-SCO.6", "refsource": "CALDERA", "url": "ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6"}, {"name": "CSSA-2003-SCO.5", "refsource": "CALDERA", "url": "ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5"}, {"name": "CLA-2003:571", "refsource": "CONECTIVA", "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571"}, {"name": "NetBSD-SA2003-002", "refsource": "NETBSD", "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc"}, {"name": "HPSBUX0302-246", "refsource": "HP", "url": "http://marc.info/?l=bugtraq&m=104679411316818&w=2"}, {"name": "20030303 Remote Sendmail Header Processing Vulnerability", "refsource": "ISS", "url": "http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950"}, {"name": "IY40502", "refsource": "AIXAPAR", "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only"}, {"name": "20030304 GLSA:  sendmail (200303-4)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=104678862409849&w=2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:19:28.722Z"}, "title": "CVE Program Container", "references": [{"name": "RHSA-2003:073", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-073.html"}, {"name": "20030301-01-P", "tags": ["vendor-advisory", "x_refsource_SGI", "x_transferred"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P"}, {"name": "IY40501", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only"}, {"name": "20030303 Fwd: APPLE-SA-2003-03-03 sendmail", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104678862109841&w=2"}, {"name": "RHSA-2003:227", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-227.html"}, {"name": "6991", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/6991"}, {"name": "VU#398025", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/398025"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.sendmail.org/8.12.8.html"}, {"name": "DSA-257", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2003/dsa-257"}, {"name": "20030304 [LSD] Technical analysis of the remote sendmail vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104678739608479&w=2"}, {"name": "oval:org.mitre.oval:def:2222", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222"}, {"name": "RHSA-2003:074", "tags": ["vendor-advisory", "x_refsource_REDHAT", "x_transferred"], "url": "http://www.redhat.com/support/errata/RHSA-2003-074.html"}, {"name": "CA-2003-07", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.cert.org/advisories/CA-2003-07.html"}, {"name": "20030303 sendmail 8.12.8 available", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104673778105192&w=2"}, {"name": "MDKSA-2003:028", "tags": ["vendor-advisory", "x_refsource_MANDRAKE", "x_transferred"], "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028"}, {"name": "IY40500", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only"}, {"name": "sendmail-header-processing-bo(10748)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10748.php"}, {"name": "CSSA-2003-SCO.6", "tags": ["vendor-advisory", "x_refsource_CALDERA", "x_transferred"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6"}, {"name": "CSSA-2003-SCO.5", "tags": ["vendor-advisory", "x_refsource_CALDERA", "x_transferred"], "url": "ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5"}, {"name": "CLA-2003:571", "tags": ["vendor-advisory", "x_refsource_CONECTIVA", "x_transferred"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571"}, {"name": "NetBSD-SA2003-002", "tags": ["vendor-advisory", "x_refsource_NETBSD", "x_transferred"], "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc"}, {"name": "HPSBUX0302-246", "tags": ["vendor-advisory", "x_refsource_HP", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104679411316818&w=2"}, {"name": "20030303 Remote Sendmail Header Processing Vulnerability", "tags": ["third-party-advisory", "x_refsource_ISS", "x_transferred"], "url": "http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950"}, {"name": "IY40502", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only"}, {"name": "20030304 GLSA:  sendmail (200303-4)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=104678862409849&w=2"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1337", "datePublished": "2004-09-01T04:00:00", "dateReserved": "2002-12-03T00:00:00", "dateUpdated": "2024-08-08T03:19:28.722Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2003-03-03T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2010-05-21T00:00:00 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : RHSA-2003:073 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-073.html (string)

}

1 : { »

name : 20030301-01-P (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SGI (string)

]

url : ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P (string)

}

2 : { »

name : IY40501 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only (string)

}

3 : { »

name : 20030303 Fwd: APPLE-SA-2003-03-03 sendmail (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=104678862109841&w=2 (string)

}

4 : { »

name : RHSA-2003:227 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-227.html (string)

}

5 : { »

name : 6991 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/6991 (string)

}

6 : { »

name : VU#398025 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

]

url : http://www.kb.cert.org/vuls/id/398025 (string)

}

7 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://www.sendmail.org/8.12.8.html (string)

}

8 : { »

name : DSA-257 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

]

url : http://www.debian.org/security/2003/dsa-257 (string)

}

9 : { »

name : 20030304 [LSD] Technical analysis of the remote sendmail vulnerability (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=104678739608479&w=2 (string)

}

10 : { »

name : oval:org.mitre.oval:def:2222 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222 (string)

}

11 : { »

name : RHSA-2003:074 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-074.html (string)

}

12 : { »

name : CA-2003-07 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT (string)

]

url : http://www.cert.org/advisories/CA-2003-07.html (string)

}

13 : { »

name : 20030303 sendmail 8.12.8 available (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=104673778105192&w=2 (string)

}

14 : { »

name : MDKSA-2003:028 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MANDRAKE (string)

]

url : http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028 (string)

}

15 : { »

name : IY40500 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only (string)

}

16 : { »

name : sendmail-header-processing-bo(10748) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

]

url : http://www.iss.net/security_center/static/10748.php (string)

}

17 : { »

name : CSSA-2003-SCO.6 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CALDERA (string)

]

url : ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6 (string)

}

18 : { »

name : CSSA-2003-SCO.5 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CALDERA (string)

]

url : ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5 (string)

}

19 : { »

name : CLA-2003:571 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CONECTIVA (string)

]

url : http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571 (string)

}

20 : { »

name : NetBSD-SA2003-002 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_NETBSD (string)

]

url : ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc (string)

}

21 : { »

name : HPSBUX0302-246 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_HP (string)

]

url : http://marc.info/?l=bugtraq&m=104679411316818&w=2 (string)

}

22 : { »

name : 20030303 Remote Sendmail Header Processing Vulnerability (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_ISS (string)

]

url : http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 (string)

}

23 : { »

name : IY40502 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only (string)

}

24 : { »

name : 20030304 GLSA: sendmail (200303-4) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

]

url : http://marc.info/?l=bugtraq&m=104678862409849&w=2 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2002-1337 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : RHSA-2003:073 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2003-073.html (string)

}

1 : { »

name : 20030301-01-P (string)

refsource : SGI (string)

url : ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P (string)

}

2 : { »

name : IY40501 (string)

refsource : AIXAPAR (string)

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only (string)

}

3 : { »

name : 20030303 Fwd: APPLE-SA-2003-03-03 sendmail (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=104678862109841&w=2 (string)

}

4 : { »

name : RHSA-2003:227 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2003-227.html (string)

}

5 : { »

name : 6991 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/6991 (string)

}

6 : { »

name : VU#398025 (string)

refsource : CERT-VN (string)

url : http://www.kb.cert.org/vuls/id/398025 (string)

}

7 : { »

name : http://www.sendmail.org/8.12.8.html (string)

refsource : CONFIRM (string)

url : http://www.sendmail.org/8.12.8.html (string)

}

8 : { »

name : DSA-257 (string)

refsource : DEBIAN (string)

url : http://www.debian.org/security/2003/dsa-257 (string)

}

9 : { »

name : 20030304 [LSD] Technical analysis of the remote sendmail vulnerability (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=104678739608479&w=2 (string)

}

10 : { »

name : oval:org.mitre.oval:def:2222 (string)

refsource : OVAL (string)

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222 (string)

}

11 : { »

name : RHSA-2003:074 (string)

refsource : REDHAT (string)

url : http://www.redhat.com/support/errata/RHSA-2003-074.html (string)

}

12 : { »

name : CA-2003-07 (string)

refsource : CERT (string)

url : http://www.cert.org/advisories/CA-2003-07.html (string)

}

13 : { »

name : 20030303 sendmail 8.12.8 available (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=104673778105192&w=2 (string)

}

14 : { »

name : MDKSA-2003:028 (string)

refsource : MANDRAKE (string)

url : http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028 (string)

}

15 : { »

name : IY40500 (string)

refsource : AIXAPAR (string)

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only (string)

}

16 : { »

name : sendmail-header-processing-bo(10748) (string)

refsource : XF (string)

url : http://www.iss.net/security_center/static/10748.php (string)

}

17 : { »

name : CSSA-2003-SCO.6 (string)

refsource : CALDERA (string)

url : ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6 (string)

}

18 : { »

name : CSSA-2003-SCO.5 (string)

refsource : CALDERA (string)

url : ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5 (string)

}

19 : { »

name : CLA-2003:571 (string)

refsource : CONECTIVA (string)

url : http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571 (string)

}

20 : { »

name : NetBSD-SA2003-002 (string)

refsource : NETBSD (string)

url : ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc (string)

}

21 : { »

name : HPSBUX0302-246 (string)

refsource : HP (string)

url : http://marc.info/?l=bugtraq&m=104679411316818&w=2 (string)

}

22 : { »

name : 20030303 Remote Sendmail Header Processing Vulnerability (string)

refsource : ISS (string)

url : http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 (string)

}

23 : { »

name : IY40502 (string)

refsource : AIXAPAR (string)

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only (string)

}

24 : { »

name : 20030304 GLSA: sendmail (200303-4) (string)

refsource : BUGTRAQ (string)

url : http://marc.info/?l=bugtraq&m=104678862409849&w=2 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-08T03:19:28.722Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : RHSA-2003:073 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-073.html (string)

}

1 : { »

name : 20030301-01-P (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_SGI (string)

2 : x_transferred (string)

]

url : ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P (string)

}

2 : { »

name : IY40501 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

2 : x_transferred (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only (string)

}

3 : { »

name : 20030303 Fwd: APPLE-SA-2003-03-03 sendmail (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104678862109841&w=2 (string)

}

4 : { »

name : RHSA-2003:227 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-227.html (string)

}

5 : { »

name : 6991 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/6991 (string)

}

6 : { »

name : VU#398025 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT-VN (string)

2 : x_transferred (string)

]

url : http://www.kb.cert.org/vuls/id/398025 (string)

}

7 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://www.sendmail.org/8.12.8.html (string)

}

8 : { »

name : DSA-257 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_DEBIAN (string)

2 : x_transferred (string)

]

url : http://www.debian.org/security/2003/dsa-257 (string)

}

9 : { »

name : 20030304 [LSD] Technical analysis of the remote sendmail vulnerability (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104678739608479&w=2 (string)

}

10 : { »

name : oval:org.mitre.oval:def:2222 (string)

tags : [ »

0 : vdb-entry (string)

1 : signature (string)

2 : x_refsource_OVAL (string)

3 : x_transferred (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222 (string)

}

11 : { »

name : RHSA-2003:074 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_REDHAT (string)

2 : x_transferred (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-074.html (string)

}

12 : { »

name : CA-2003-07 (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_CERT (string)

2 : x_transferred (string)

]

url : http://www.cert.org/advisories/CA-2003-07.html (string)

}

13 : { »

name : 20030303 sendmail 8.12.8 available (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104673778105192&w=2 (string)

}

14 : { »

name : MDKSA-2003:028 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_MANDRAKE (string)

2 : x_transferred (string)

]

url : http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028 (string)

}

15 : { »

name : IY40500 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

2 : x_transferred (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only (string)

}

16 : { »

name : sendmail-header-processing-bo(10748) (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_XF (string)

2 : x_transferred (string)

]

url : http://www.iss.net/security_center/static/10748.php (string)

}

17 : { »

name : CSSA-2003-SCO.6 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CALDERA (string)

2 : x_transferred (string)

]

url : ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6 (string)

}

18 : { »

name : CSSA-2003-SCO.5 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CALDERA (string)

2 : x_transferred (string)

]

url : ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5 (string)

}

19 : { »

name : CLA-2003:571 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CONECTIVA (string)

2 : x_transferred (string)

]

url : http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571 (string)

}

20 : { »

name : NetBSD-SA2003-002 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_NETBSD (string)

2 : x_transferred (string)

]

url : ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc (string)

}

21 : { »

name : HPSBUX0302-246 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_HP (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104679411316818&w=2 (string)

}

22 : { »

name : 20030303 Remote Sendmail Header Processing Vulnerability (string)

tags : [ »

0 : third-party-advisory (string)

1 : x_refsource_ISS (string)

2 : x_transferred (string)

]

url : http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 (string)

}

23 : { »

name : IY40502 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_AIXAPAR (string)

2 : x_transferred (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only (string)

}

24 : { »

name : 20030304 GLSA: sendmail (200303-4) (string)

tags : [ »

0 : mailing-list (string)

1 : x_refsource_BUGTRAQ (string)

2 : x_transferred (string)

]

url : http://marc.info/?l=bugtraq&m=104678862409849&w=2 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2002-1337 (string)

datePublished : 2004-09-01T04:00:00 (string)

dateReserved : 2002-12-03T00:00:00 (string)

dateUpdated : 2024-08-08T03:19:28.722Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "C6D3A2C0-B076-4351-8085-DA3A37117453", "versionEndExcluding": "8.9.3", "vulnerable": true}, {"criteria": "cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "5AE239ED-94EE-40C7-9133-D1F4779A2E0C", "versionEndExcluding": "8.11.6", "versionStartIncluding": "8.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:*", "matchCriteriaId": "64788C22-64F9-41DB-A4C2-BFCD6DBD8EE6", "versionEndExcluding": "8.12.8", "versionStartIncluding": "8.12.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:hp:alphaserver_sc:*:*:*:*:*:*:*:*", "matchCriteriaId": "5556D665-3792-4832-9EEE-D1122C9BF98E", "vulnerable": true}, {"criteria": "cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:*", "matchCriteriaId": "D1FD0EB4-E744-4465-AFEE-A3C807C9C993", "vulnerable": true}, {"criteria": "cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:*", "matchCriteriaId": "1D866A7D-F0B9-4EA3-93C6-1E7C2C2A861F", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:*", "matchCriteriaId": "38BFA923-7D80-4F01-AF9F-6F13209948AC", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:*", "matchCriteriaId": "EDE44C49-172C-4899-8CC8-29AA99A7CD2F", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*", "matchCriteriaId": "771931F7-9180-4EBD-8627-E1CF17D24647", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:11.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "3DB008E3-9A00-4D28-8826-A9FCC9F65314", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*", "matchCriteriaId": "EDD9BE2B-7255-4FC1-B452-E8370632B03F", "vulnerable": true}, {"criteria": "cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:*", "matchCriteriaId": "EBD0DC0A-ACAD-4870-9C0F-3095F2AC8CCD", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:*", "matchCriteriaId": "E10D9BF9-FCC7-4680-AD3A-95757FC005EA", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "78E8C3A4-9FA7-4F2A-8C65-D4404715E674", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "7AC78BA4-70F4-4B9F-93C2-B107E4DCC418", "vulnerable": true}, {"criteria": "cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:*", "matchCriteriaId": "28A10F5A-067E-4DD8-B585-ABCD6F6B324E", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:solaris:2.6:*:*:*:*:*:*:*", "matchCriteriaId": "69C7B4A8-E8D0-425C-B979-17E85458B0C6", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:solaris:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "0F538D2B-1AE1-4766-830E-CF7999181128", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:solaris:8:*:*:*:*:*:*:*", "matchCriteriaId": "722A52CF-4C6E-44D3-90C4-D2F72A40EF58", "vulnerable": true}, {"criteria": "cpe:2.3:o:oracle:solaris:9:*:*:*:*:*:*:*", "matchCriteriaId": "4F864AD7-53A2-4225-870F-062876CE45DD", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:*", "matchCriteriaId": "369207B4-96FA-4324-9445-98FAE8ECF5DB", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*", "matchCriteriaId": "08003947-A4F1-44AC-84C6-9F8D097EB759", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224", "vulnerable": true}, {"criteria": "cpe:2.3:o:windriver:bsdos:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "18B197B3-AA07-440F-A733-80B7CE07B3D2", "vulnerable": true}, {"criteria": "cpe:2.3:o:windriver:bsdos:4.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "42761237-75A9-4E8C-8202-3CA3EB3D1ACC", "vulnerable": true}, {"criteria": "cpe:2.3:o:windriver:bsdos:5.0:*:*:*:*:*:*:*", "matchCriteriaId": "7FAFD2BC-330C-4357-B8C7-F451C6282869", "vulnerable": true}, {"criteria": "cpe:2.3:o:windriver:platform_sa:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "2151D858-F6D4-472E-9CC7-A8EA26E27CC7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Sendmail 5.79 a la 8.12.7 que permite a atacantes remotos la ejecuci\u00f3n arbitraria de c\u00f3digo mediante ciertos campos de direcci\u00f3n formateados, relativos a comentarios de cabecera de emisor y receptor, procesados por la funci\u00f3n crackaddr del fichero headers.c."}], "id": "CVE-2002-1337", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2003-03-07T05:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104673778105192&w=2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678739608479&w=2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678862109841&w=2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678862409849&w=2"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104679411316818&w=2"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.cert.org/advisories/CA-2003-07.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.debian.org/security/2003/dsa-257"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.iss.net/security_center/static/10748.php"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/398025"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-073.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-074.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-227.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Exploit", "Patch", "Third Party Advisory", "VDB Entry", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/6991"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.sendmail.org/8.12.8.html"}, {"source": "cve@mitre.org", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104673778105192&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678739608479&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678862109841&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104678862409849&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://marc.info/?l=bugtraq&m=104679411316818&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.cert.org/advisories/CA-2003-07.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.debian.org/security/2003/dsa-257"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.iss.net/security_center/static/10748.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/398025"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-073.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-074.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "http://www.redhat.com/support/errata/RHSA-2003-227.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Exploit", "Patch", "Third Party Advisory", "VDB Entry", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/6991"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link", "Patch", "Vendor Advisory"], "url": "http://www.sendmail.org/8.12.8.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Broken Link"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-120"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:* (string)

matchCriteriaId : C6D3A2C0-B076-4351-8085-DA3A37117453 (string)

versionEndExcluding : 8.9.3 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 5AE239ED-94EE-40C7-9133-D1F4779A2E0C (string)

versionEndExcluding : 8.11.6 (string)

versionStartIncluding : 8.10.0 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:sendmail:sendmail:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 64788C22-64F9-41DB-A4C2-BFCD6DBD8EE6 (string)

versionEndExcluding : 8.12.8 (string)

versionStartIncluding : 8.12.0 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:h:hp:alphaserver_sc:*:*:*:*:*:*:*:* (string)

matchCriteriaId : 5556D665-3792-4832-9EEE-D1122C9BF98E (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:gentoo:linux:1.4:rc1:*:*:*:*:*:* (string)

matchCriteriaId : D1FD0EB4-E744-4465-AFEE-A3C807C9C993 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:gentoo:linux:1.4:rc2:*:*:*:*:*:* (string)

matchCriteriaId : 1D866A7D-F0B9-4EA3-93C6-1E7C2C2A861F (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:hp:hp-ux:10.10:*:*:*:*:*:*:* (string)

matchCriteriaId : 38BFA923-7D80-4F01-AF9F-6F13209948AC (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:hp:hp-ux:10.20:*:*:*:*:*:*:* (string)

matchCriteriaId : EDE44C49-172C-4899-8CC8-29AA99A7CD2F (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:* (string)

matchCriteriaId : 771931F7-9180-4EBD-8627-E1CF17D24647 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:hp:hp-ux:11.0.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 3DB008E3-9A00-4D28-8826-A9FCC9F65314 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:* (string)

matchCriteriaId : EDD9BE2B-7255-4FC1-B452-E8370632B03F (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:hp:hp-ux:11.22:*:*:*:*:*:*:* (string)

matchCriteriaId : EBD0DC0A-ACAD-4870-9C0F-3095F2AC8CCD (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5:*:*:*:*:*:*:* (string)

matchCriteriaId : E10D9BF9-FCC7-4680-AD3A-95757FC005EA (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 78E8C3A4-9FA7-4F2A-8C65-D4404715E674 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : DBA2E3A3-EB9B-4B20-B754-EEC914FB1D47 (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.5.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 7AC78BA4-70F4-4B9F-93C2-B107E4DCC418 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:netbsd:netbsd:1.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 28A10F5A-067E-4DD8-B585-ABCD6F6B324E (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:oracle:solaris:2.6:*:*:*:*:*:*:* (string)

matchCriteriaId : 69C7B4A8-E8D0-425C-B979-17E85458B0C6 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:oracle:solaris:7.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 0F538D2B-1AE1-4766-830E-CF7999181128 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:oracle:solaris:8:*:*:*:*:*:*:* (string)

matchCriteriaId : 722A52CF-4C6E-44D3-90C4-D2F72A40EF58 (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:oracle:solaris:9:*:*:*:*:*:*:* (string)

matchCriteriaId : 4F864AD7-53A2-4225-870F-062876CE45DD (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:sun:sunos:-:*:*:*:*:*:*:* (string)

matchCriteriaId : 369207B4-96FA-4324-9445-98FAE8ECF5DB (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:* (string)

matchCriteriaId : 08003947-A4F1-44AC-84C6-9F8D097EB759 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:* (string)

matchCriteriaId : A2475113-CFE4-41C8-A86F-F2DA6548D224 (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:windriver:bsdos:4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 18B197B3-AA07-440F-A733-80B7CE07B3D2 (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:windriver:bsdos:4.3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 42761237-75A9-4E8C-8202-3CA3EB3D1ACC (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:windriver:bsdos:5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 7FAFD2BC-330C-4357-B8C7-F451C6282869 (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:windriver:platform_sa:1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 2151D858-F6D4-472E-9CC7-A8EA26E27CC7 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c. (string)

}

1 : { »

lang : es (string)

value : Desbordamiento de búfer en Sendmail 5.79 a la 8.12.7 que permite a atacantes remotos la ejecución arbitraria de código mediante ciertos campos de dirección formateados, relativos a comentarios de cabecera de emisor y receptor, procesados por la función crackaddr del fichero headers.c. (string)

}

]

id : CVE-2002-1337 (string)

lastModified : 2025-04-03T01:03:51.193 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : HIGH (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : COMPLETE (string)

baseScore : 10 (number)

confidentialityImpact : COMPLETE (string)

integrityImpact : COMPLETE (string)

vectorString : AV:N/AC:L/Au:N/C:C/I:C/A:C (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 10 (number)

obtainAllPrivilege : true (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2003-03-07T05:00:00.000 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc (string)

}

1 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6 (string)

}

2 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5 (string)

}

3 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P (string)

}

4 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571 (string)

}

5 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028 (string)

}

6 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104673778105192&w=2 (string)

}

7 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678739608479&w=2 (string)

}

8 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678862109841&w=2 (string)

}

9 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678862409849&w=2 (string)

}

10 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104679411316818&w=2 (string)

}

11 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only (string)

}

12 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only (string)

}

13 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only (string)

}

14 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Third Party Advisory (string)

3 : US Government Resource (string)

]

url : http://www.cert.org/advisories/CA-2003-07.html (string)

}

15 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.debian.org/security/2003/dsa-257 (string)

}

16 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Vendor Advisory (string)

]

url : http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 (string)

}

17 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.iss.net/security_center/static/10748.php (string)

}

18 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/398025 (string)

}

19 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-073.html (string)

}

20 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-074.html (string)

}

21 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-227.html (string)

}

22 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

1 : Exploit (string)

2 : Patch (string)

3 : Third Party Advisory (string)

4 : VDB Entry (string)

5 : Vendor Advisory (string)

]

url : http://www.securityfocus.com/bid/6991 (string)

}

23 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Vendor Advisory (string)

]

url : http://www.sendmail.org/8.12.8.html (string)

}

24 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Broken Link (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222 (string)

}

25 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-002.txt.asc (string)

}

26 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.sco.com/pub/updates/OpenServer/CSSA-2003-SCO.6 (string)

}

27 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://ftp.sco.com/pub/updates/UnixWare/CSSA-2003-SCO.5 (string)

}

28 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : ftp://patches.sgi.com/support/free/security/advisories/20030301-01-P (string)

}

29 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000571 (string)

}

30 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://frontal2.mandriva.com/security/advisories?name=MDKSA-2003:028 (string)

}

31 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104673778105192&w=2 (string)

}

32 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678739608479&w=2 (string)

}

33 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678862109841&w=2 (string)

}

34 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104678862409849&w=2 (string)

}

35 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

]

url : http://marc.info/?l=bugtraq&m=104679411316818&w=2 (string)

}

36 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40500&apar=only (string)

}

37 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40501&apar=only (string)

}

38 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www-1.ibm.com/support/search.wss?rs=0&q=IY40502&apar=only (string)

}

39 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Third Party Advisory (string)

3 : US Government Resource (string)

]

url : http://www.cert.org/advisories/CA-2003-07.html (string)

}

40 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.debian.org/security/2003/dsa-257 (string)

}

41 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Vendor Advisory (string)

]

url : http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950 (string)

}

42 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.iss.net/security_center/static/10748.php (string)

}

43 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : US Government Resource (string)

]

url : http://www.kb.cert.org/vuls/id/398025 (string)

}

44 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-073.html (string)

}

45 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-074.html (string)

}

46 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : http://www.redhat.com/support/errata/RHSA-2003-227.html (string)

}

47 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

1 : Exploit (string)

2 : Patch (string)

3 : Third Party Advisory (string)

4 : VDB Entry (string)

5 : Vendor Advisory (string)

]

url : http://www.securityfocus.com/bid/6991 (string)

}

48 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

1 : Patch (string)

2 : Vendor Advisory (string)

]

url : http://www.sendmail.org/8.12.8.html (string)

}

49 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Broken Link (string)

]

url : https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2222 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-120 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"affected_release": [{"advisory": "RHSA-2003:074", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:074", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux ES version 2.1", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:074", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Enterprise Linux WS version 2.1", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:6.2", "product_name": "Red Hat Linux 6.2", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:7.0", "product_name": "Red Hat Linux 7.0", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:7.1", "product_name": "Red Hat Linux 7.1", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:227", "cpe": "cpe:/o:redhat:linux:7.1", "product_name": "Red Hat Linux 7.1", "release_date": "2003-07-08T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:7.2", "product_name": "Red Hat Linux 7.2", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:7.3", "product_name": "Red Hat Linux 7.3", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:073", "cpe": "cpe:/o:redhat:linux:8.0", "product_name": "Red Hat Linux 8.0", "release_date": "2003-03-03T00:00:00Z"}, {"advisory": "RHSA-2003:074", "cpe": "cpe:/o:redhat:enterprise_linux:2.1", "product_name": "Red Hat Linux Advanced Workstation 2.1", "release_date": "2003-03-03T00:00:00Z"}], "bugzilla": {"description": "security flaw", "id": "1616877", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1616877"}, "csaw": false, "details": ["Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c."], "name": "CVE-2002-1337", "public_date": "2003-03-03T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2002-1337\nhttps://nvd.nist.gov/vuln/detail/CVE-2002-1337"], "threat_severity": "Critical"}

{

affected_release : [ »

0 : { »

advisory : RHSA-2003:074 (string)

cpe : cpe:/o:redhat:enterprise_linux:2.1 (string)

product_name : Red Hat Enterprise Linux AS (Advanced Server) version 2.1 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

1 : { »

advisory : RHSA-2003:074 (string)

cpe : cpe:/o:redhat:enterprise_linux:2.1 (string)

product_name : Red Hat Enterprise Linux ES version 2.1 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

2 : { »

advisory : RHSA-2003:074 (string)

cpe : cpe:/o:redhat:enterprise_linux:2.1 (string)

product_name : Red Hat Enterprise Linux WS version 2.1 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

3 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:6.2 (string)

product_name : Red Hat Linux 6.2 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

4 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:7.0 (string)

product_name : Red Hat Linux 7.0 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

5 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:7.1 (string)

product_name : Red Hat Linux 7.1 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

6 : { »

advisory : RHSA-2003:227 (string)

cpe : cpe:/o:redhat:linux:7.1 (string)

product_name : Red Hat Linux 7.1 (string)

release_date : 2003-07-08T00:00:00Z (string)

}

7 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:7.2 (string)

product_name : Red Hat Linux 7.2 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

8 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:7.3 (string)

product_name : Red Hat Linux 7.3 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

9 : { »

advisory : RHSA-2003:073 (string)

cpe : cpe:/o:redhat:linux:8.0 (string)

product_name : Red Hat Linux 8.0 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

10 : { »

advisory : RHSA-2003:074 (string)

cpe : cpe:/o:redhat:enterprise_linux:2.1 (string)

product_name : Red Hat Linux Advanced Workstation 2.1 (string)

release_date : 2003-03-03T00:00:00Z (string)

}

]

bugzilla : { »

description : security flaw (string)

id : 1616877 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1616877 (string)

}

csaw : false (boolean)

details : [ »

0 : Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary code via certain formatted address fields, related to sender and recipient header comments as processed by the crackaddr function of headers.c. (string)

]

name : CVE-2002-1337 (string)

public_date : 2003-03-03T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2002-1337 https://nvd.nist.gov/vuln/detail/CVE-2002-1337 (string)

]

threat_severity : Critical (string)

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object