Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Sendmail 8.12.0 through 8.12.6 truncates log messages longer than 100 characters, which allows remote attackers to prevent the IP address from being logged via a long IDENT response.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Sendmail超长Ident日志记录欺骗漏洞
Vulnerability Description
Sendmail是一款免费开放源代码邮件传输代理,由Sendmail Consortium开发和维护。 Sendmail没有正确处理超长idents,远程攻击者可以利用这个漏洞执行多个Sendmail命令而不被记录IP信息。 当使用95字节或者更长的ident数据连接Sendmail时,Sendmail由于会因为有超过所定义的缓冲区长度而截断提交请求IP的信息,而导致攻击者在使用VRFY、EXPN、SMTP攻击或者发送EMAIL,其IP地址不会被记录在maillog日志中。 这个问题不存在执行任意代码的可
CVSS Information
N/A
Vulnerability Type
N/A