CVE-2003-0681
sendmail - buffer overflows
EPSS 12.4%
Description
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
How to fix CVE-2003-0681
To remediate CVE-2003-0681, upgrade the affected package to a fixed version below.
- Debian/sendmail—upgrade to 8.12.10-1 or later
- Debian/sendmail—upgrade to 8.12.3-6.6 or later
- Debian/sendmail-wide—upgrade to 8.12.3+3.5Wbeta-5.5 or later
Is CVE-2003-0681 being exploited?
Moderate — EPSS is 12.4%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (3)
- from 0, < 8.12.10-1
- from 0, < 8.12.3-6.6
- from 0, < 8.12.3+3.5Wbeta-5.5