CVE-2014-3956
Last modified
CVE-2014-3956 is a vulnerability of currently unknown severity. The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.. EPSS estimates a 0.63% chance of exploitation in the next 30 days.
Description
The sm_close_on_exec function in conf.c in sendmail before 8.14.9 has arguments in the wrong order, and consequently skips setting expected FD_CLOEXEC flags, which allows local users to access unintended high-numbered file descriptors via a custom mail-delivery program.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Freebsd | Freebsd | <= 9.2 |
| Hp | Hpux | <= b.11.31 |
| Fedoraproject | Fedora | 20 |
| Sendmail | Sendmail | <= 8.14.8 |
| Sendmail | Sendmail | 8.6.7 |
| Sendmail | Sendmail | 8.7.6 |
| Sendmail | Sendmail | 8.7.7 |
| Sendmail | Sendmail | 8.7.8 |
| Sendmail | Sendmail | 8.7.9 |
| Sendmail | Sendmail | 8.7.10 |
| Sendmail | Sendmail | 8.8.8 |
| Sendmail | Sendmail | 8.9.0 |
| Sendmail | Sendmail | 8.9.1 |
| Sendmail | Sendmail | 8.9.2 |
| Sendmail | Sendmail | 8.9.3 |
| Sendmail | Sendmail | 8.10 |
| Sendmail | Sendmail | 8.10.0 |
| Sendmail | Sendmail | 8.10.1 |
| Sendmail | Sendmail | 8.10.2 |
| Sendmail | Sendmail | 8.11.0 |
| Sendmail | Sendmail | 8.11.1 |
| Sendmail | Sendmail | 8.11.2 |
| Sendmail | Sendmail | 8.11.3 |
| Sendmail | Sendmail | 8.11.4 |
| Sendmail | Sendmail | 8.11.5 |
| Sendmail | Sendmail | 8.11.6 |
| Sendmail | Sendmail | 8.11.7 |
| Sendmail | Sendmail | 8.12.0 |
| Sendmail | Sendmail | 8.12.1 |
| Sendmail | Sendmail | 8.12.2 |
| Sendmail | Sendmail | 8.12.3 |
| Sendmail | Sendmail | 8.12.4 |
| Sendmail | Sendmail | 8.12.5 |
| Sendmail | Sendmail | 8.12.6 |
| Sendmail | Sendmail | 8.12.7 |
| Sendmail | Sendmail | 8.12.8 |
| Sendmail | Sendmail | 8.12.9 |
| Sendmail | Sendmail | 8.12.10 |
| Sendmail | Sendmail | 8.12.11 |
| Sendmail | Sendmail | 8.13.0 |
| Sendmail | Sendmail | 8.13.1 |
| Sendmail | Sendmail | 8.13.2 |
| Sendmail | Sendmail | 8.13.3 |
| Sendmail | Sendmail | 8.13.4 |
| Sendmail | Sendmail | 8.13.5 |
| Sendmail | Sendmail | 8.13.6 |
| Sendmail | Sendmail | 8.13.7 |
| Sendmail | Sendmail | 8.13.8 |
| Sendmail | Sendmail | 8.14.0 |
| Sendmail | Sendmail | 8.14.1 |
Showing 50 of 56 affected configurations. See NVD for the full list.
References
- ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTESVendor Advisory
- http://advisories.mageia.org/MGASA-2014-0270.htmlThird Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.htmlThird Party Advisory
- http://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.htmlThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/67791Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1030331Third Party Advisory, VDB Entry
- http://www.sendmail.com/sm/open_source/download/8.14.9/Patch, Vendor Advisory
- ftp://ftp.sendmail.org/pub/sendmail/RELEASE_NOTESVendor Advisory
- http://advisories.mageia.org/MGASA-2014-0270.htmlThird Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2014-June/134349.htmlThird Party Advisory
- http://packetstormsecurity.com/files/126975/Slackware-Security-Advisory-sendmail-Updates.htmlThird Party Advisory, VDB Entry
- http://www.securityfocus.com/bid/67791Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1030331Third Party Advisory, VDB Entry
- http://www.sendmail.com/sm/open_source/download/8.14.9/Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-3956?
How severe is CVE-2014-3956?
How do I fix CVE-2014-3956?
Are you affected by CVE-2014-3956?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST