Sendmail WIZ Network Vulnerability

Summary

Your MTA accepts the WIZ command. It must be a very old version of sendmail. WIZ allows remote users to execute arbitrary commands as root without the need to log in.

Solution

reconfigure it or upgrade your MTA.

Severity

Classification

CVE CVE-1999-0145
CVSS Base Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Sendmail long debug local overflow
SMTP too long line
MailCarrier SMTP Buffer Overflow Vulnerability
Sendmail WIZ
GNU glibc Remote Heap Buffer Overflow Vulnerability (Exim)

Take action and discover your vulnerabilities