Test case 1301

Cves: CVE-1999-0206
Type: source code
Pairs: 1302-v1.0.0
State: bad
Author: MIT
Status: candidate
Language: C
Submission Date: 09 Feb 2006

Description

Sendmail 8.8.0/8.8.1 MIME Overflow CVE-1999-0206.
From MIT benchmarks (models/sendmail/s3)
A remote attacker can send a cleverly crafted e-mail message and trigger a
buffer overflow, gaining root access on the server running Sendmail.
Bad file: mime1-bad.c
Bad line number: 239, 254, 266
Taxonomy Classification: 0060506421304

Flaws

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Test Suites

Testing Exploitable Buffer Overflows From Open Source Code

Have any comments on this test case? Please, send us an email.