Sendmail Ruleset Parsing Buffer Overflow Vulnerability

Sendmail Ruleset Parsing Buffer Overflow Vulnerability

Sendmail has been reported prone to a buffer-overflow issue when parsing nonstandard rulesets.

An attacker may trigger a buffer overflow in Sendmail when the application parses specific rulesets. Note that Sendmail under a default configuration is not vulnerable to this issue.

It is not currently known if this vulnerability may be exploited to execute arbitrary code. However, given the nature of this vulnerability, an attacker might be able to execute arbitrary code in the context of the affected Sendmail server, but this has not been confirmed.