In Sendmail, attackers can gain root privileges via SMTP by specifying an improper mail from address and an invalid rcpt to address that would cause the mail to bounce to a program.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Sendmail |
Eric_allman |
8.6.10 |
8.6.10 |
References