National Institute of Standards and Technology
Package illustrating a test case

Test case 1297

Description

Remote Sendmail Header Processing Vulnerability: CA-2003-07
From MIT benchmarks (models/sendmail/s1)
Buffer overflow vulnerability allows remote attackers to execute arbitrary
commands by sending e-mails with cleverly formatted address fields related to
the sender and recipient header comments.
Bad file: crackaddr-bad.c
Bad line number: 197, 215, 248, 252, 303, 305, 317, 333, 335, 345, 351,
355, 362, 375, 411, 426, 428, 437, 442, 445, 473, 483, 485, 487, 496, 499,
502, 504
Taxonomy classification: 0003306111304

Flaws

Test Suites

Have any comments on this test case? Please, send us an email.