This page aggregates publicly disclosed CVE and security risk information related to eric_allman, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-0319 | mail.local in Sendmail 8.10.x does not properly identify the .\n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 2047 characters long and ends in .\n. | [email protected] | 5.0 | 1.84% | 2000-04-23 | 2026-04-16 |
| CVE-1999-0976 | Sendmail allows local users to reinitialize the aliases database via the newaliases command, then cause a denial of service by interrupting Sendmail. | [email protected] | 2.1 | 0.29% | 1999-12-07 | 2026-04-16 |
| CVE-1999-0393 | Remote attackers can cause a denial of service in Sendmail 8.8.x and 8.9.2 by sending messages with a large number of headers. | [email protected] | 5.0 | 2.43% | 1999-01-01 | 2026-04-16 |
| CVE-1999-0205 | Denial of service in Sendmail 8.6.11 and 8.6.12. | [email protected] | 5.0 | 1.35% | 1999-01-01 | 2026-04-16 |
| CVE-1999-0057 | Vacation program allows command execution by remote users through a sendmail command. | [email protected] | 7.5 | 8.25% | 1998-11-16 | 2026-04-16 |
| CVE-1999-0047 | MIME conversion buffer overflow in sendmail versions 8.8.3 and 8.8.4. | [email protected] | 10.0 | 3.11% | 1997-01-28 | 2026-04-16 |
| CVE-1999-0204 | Sendmail 8.6.9 allows remote attackers to execute root commands, using ident. | [email protected] | 10.0 | 8.67% | 1997-01-01 | 2026-04-16 |
| CVE-1999-0163 | In older versions of Sendmail, an attacker could use a pipe character to execute root commands. | [email protected] | 7.2 | 0.44% | 1997-01-01 | 2026-04-16 |
| CVE-1999-0129 | Sendmail allows local users to write to a file and gain group permissions via a .forward or :include: file. | [email protected] | 4.6 | 0.56% | 1996-12-03 | 2026-04-16 |
| CVE-1999-0130 | Local users can start Sendmail in daemon mode and gain root privileges. | [email protected] | 7.2 | 1.05% | 1996-11-16 | 2026-04-16 |
| CVE-1999-0206 | MIME buffer overflow in Sendmail 8.8.0 and 8.8.1 gives root access. | [email protected] | 10.0 | 1.95% | 1996-10-01 | 2026-04-16 |
| CVE-1999-0131 | Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users. | [email protected] | 7.2 | 0.58% | 1996-09-11 | 2026-04-16 |
| CVE-1999-0203 | In Sendmail, attackers can gain root privileges via SMTP by specifying an improper "mail from" address and an invalid "rcpt to" address that would cause the mail to bounce to a program. | [email protected] | 10.0 | 2.08% | 1995-08-17 | 2026-04-16 |
| CVE-1999-0145 | Sendmail WIZ command enabled, allowing root access. | [email protected] | 7.2 | 0.98% | 1993-09-30 | 2026-04-16 |
| CVE-1999-0095 | The debug command in Sendmail is enabled, allowing attackers to execute commands as root. | [email protected] | 10.0 | 16.45% | 1988-10-01 | 2026-04-16 |