CVE-2009-1490

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2009-1490

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2009-1490.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2009-1490

Downstream

DEBIAN-CVE-2009-1490

Published

2009-05-05T19:30:00Z

Modified

2026-04-10T03:40:44.711179Z

Summary

[none]

Details

Heap-based buffer overflow in Sendmail before 8.13.2 allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via a long X- header, as demonstrated by an X-Testing header.

References

http://www.sendmail.org/releases/8.13.2
http://www.nmrc.org/~thegnome/blog/apr09/
http://www.sendmail.org/releases/8.13.2
https://exchange.xforce.ibmcloud.com/vulnerabilities/50355

CVE-2009-1490

Affected packages