National Institute of Standards and Technology
Package illustrating a test case

Test case 1298

Description

Remote Sendmail Header Processing Vulnerability: CA-2003-07
Patched version.
From MIT benchmarks (models/sendmail/s1)
Buffer overflow vulnerability allows remote attackers to execute arbitrary
commands by sending e-mails with cleverly formatted address fields related to
the sender and recipient header comments.
Patched file: crackaddr-ok.c
Patched line number: 209, 226, 263, 266, 317, 319, 331, 346, 348, 352, 360,
364, 367, 374, 386, 426, 440, 442, 446, 454, 457, 460, 490, 501, 504, 506,
515, 518, 521, 524

Flaws

Test Suites

Have any comments on this test case? Please, send us an email.