{"api_version":"1","generated_at":"2026-04-23T02:36:09+00:00","cve":"CVE-2006-0058","urls":{"html":"https://cve.report/CVE-2006-0058","api":"https://cve.report/api/cve/CVE-2006-0058.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2006-0058","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2006-0058"},"summary":{"title":"CVE-2006-0058","description":"Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations.","state":"PUBLISHED","assigner":"certcc","published_at":"2006-03-22 20:06:00","updated_at":"2025-04-03 01:03:51"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.6","severity":"","vector":"AV:N/AC:H/Au:N/C:C/I:C/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:C/I:C/A:C","baseScore":7.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://www.vupen.com/english/advisories/2006/2189","name":"http://www.vupen.com/english/advisories/2006/2189","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail - OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.redhat.com/support/errata/RHSA-2006-0265.html","name":"http://www.redhat.com/support/errata/RHSA-2006-0265.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Support | Red Hat","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19342","name":"http://secunia.com/advisories/19342","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Sendmail Signal Handling Memory Corruption Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19450","name":"http://secunia.com/advisories/19450","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"F-Secure Messaging Security Gateway Sendmail Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19676","name":"http://secunia.com/advisories/19676","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Avaya CMS / IR Sendmail Memory Corruption Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1","name":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"#102324: Sun Cobalt sendmail(8) Security Issue Involving Signal Handling Daemon","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635","name":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IT Resource Center - login / register","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1529","name":"http://www.vupen.com/english/advisories/2006/1529","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1049","name":"http://www.vupen.com/english/advisories/2006/1049","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1072","name":"http://www.vupen.com/english/advisories/2006/1072","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19346","name":"http://secunia.com/advisories/19346","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Red Hat update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.kb.cert.org/vuls/id/834865","name":"http://www.kb.cert.org/vuls/id/834865","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"],"title":"US-CERT Vulnerability Note VU#834865","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19466","name":"http://secunia.com/advisories/19466","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"NetBSD Sendmail Memory Corruption Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.html","name":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[SECURITY] Fedora Core 4 Update: sendmail-8.13.6-0.FC4.1","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19349","name":"http://secunia.com/advisories/19349","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"AIX sendmail Signal Handling Memory Corruption Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securityreason.com/securityalert/612","name":"http://securityreason.com/securityalert/612","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityReason","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.f-secure.com/security/fsc-2006-2.shtml","name":"http://www.f-secure.com/security/fsc-2006-2.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"F-Secure Security Bulletin FSC-2006-2","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc","name":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/plain","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19532","name":"http://secunia.com/advisories/19532","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SGI Advanced Linux Environment Multiple Updates - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19345","name":"http://secunia.com/advisories/19345","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"FreeBSD update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.us-cert.gov/cas/techalerts/TA06-081A.html","name":"http://www.us-cert.gov/cas/techalerts/TA06-081A.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["US Government Resource"],"title":"US-CERT Technical Cyber Security Alert TA06-081A -- Sendmail Race Condition Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1139","name":"http://www.vupen.com/english/advisories/2006/1139","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc","name":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/plain","httpstatus":"404","archivestatus":"404"},{"url":"ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U","name":"ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"404"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1","name":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"#102262: Security Vulnerability in sendmail(1M) Versions Prior to 8.13.6","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/2490","name":"http://www.vupen.com/english/advisories/2006/2490","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail - OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19394","name":"http://secunia.com/advisories/19394","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"HP-UX update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/20723","name":"http://secunia.com/advisories/20723","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"About Secunia Research | Flexera","mime":"text/html","httpstatus":"200","archivestatus":"503"},{"url":"http://www.iss.net/threats/216.html","name":"http://www.iss.net/threats/216.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"216","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www.osvdb.org/24037","name":"http://www.osvdb.org/24037","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only","name":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Search results","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19361","name":"http://secunia.com/advisories/19361","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SUSE update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm","name":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19774","name":"http://secunia.com/advisories/19774","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Sun Cobalt Sendmail Memory Corruption Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.619600","name":"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.619600","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"The Slackware Linux Project: Slackware Security Advisories","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751","name":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/plain","httpstatus":"404","archivestatus":"404"},{"url":"http://www.ciac.org/ciac/bulletins/q-151.shtml","name":"http://www.ciac.org/ciac/bulletins/q-151.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Q-151: sendmail Security Update","mime":"text/html","httpstatus":"-1","archivestatus":"200"},{"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only","name":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Search results","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.html","name":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"OpenPKG Corporation: Security: Security Advisories","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19363","name":"http://secunia.com/advisories/19363","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Gentoo update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/20243","name":"http://secunia.com/advisories/20243","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"UnixWare update for Sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19407","name":"http://secunia.com/advisories/19407","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"OpenBSD update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml","name":"http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Gentoo Linux Documentation\n--\n  Sendmail: Race condition in the handling of asynchronous signals","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1157","name":"http://www.vupen.com/english/advisories/2006/1157","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/archive/1/428536/100/0/threaded","name":"http://www.securityfocus.com/archive/1/428536/100/0/threaded","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityFocus","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1015801","name":"http://securitytracker.com/id?1015801","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityTracker.com Archives - Sendmail Race Condition in Signal Handler May Let Remote Users Trigger a Buffer Overflow to Execute Arbitrary Code","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19367","name":"http://secunia.com/advisories/19367","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Debian update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.novell.com/linux/security/advisories/2006_17_sendmail.html","name":"http://www.novell.com/linux/security/advisories/2006_17_sendmail.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Security Announcement","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:058","name":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:058","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Advisories - Mandriva Linux","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.sendmail.com/company/advisory/index.shtml","name":"http://www.sendmail.com/company/advisory/index.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Sendmail.com - Enterprise solutions for secure, dependable and compliant\r\nmessaging","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555","name":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"404"},{"url":"http://www.redhat.com/support/errata/RHSA-2006-0264.html","name":"http://www.redhat.com/support/errata/RHSA-2006-0264.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Support | Red Hat","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/24584","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/24584","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19368","name":"http://secunia.com/advisories/19368","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Slackware update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-200494-1","name":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-200494-1","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"404"},{"url":"http://securityreason.com/securityalert/743","name":"http://securityreason.com/securityalert/743","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityReason - HP-UX running Sendmail, Remote Execution of Arbitrary Code","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/archive/1/428656/100/0/threaded","name":"http://www.securityfocus.com/archive/1/428656/100/0/threaded","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityFocus","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1051","name":"http://www.vupen.com/english/advisories/2006/1051","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19356","name":"http://secunia.com/advisories/19356","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Fedora update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/1068","name":"http://www.vupen.com/english/advisories/2006/1068","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.debian.org/security/2006/dsa-1015","name":"http://www.debian.org/security/2006/dsa-1015","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Debian -- Security Information -- DSA-1015-1 sendmail","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.html","name":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.html","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"[SECURITY] Fedora Core 5 Update: sendmail-8.13.6-0.FC5.1","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P","name":"ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"404"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11074","name":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11074","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Repository  /  Oval Repository","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688","name":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM Support: Fix Central","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm","name":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"1. Overview:","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19533","name":"http://secunia.com/advisories/19533","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SGI IRIX update for sendmail - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19360","name":"http://secunia.com/advisories/19360","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Sun Solaris Sendmail Signal Handling Memory Corruption - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/19404","name":"http://secunia.com/advisories/19404","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Avaya Products Sendmail Signal Handling Memory Corruption - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt","name":"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"text/plain","httpstatus":"200","archivestatus":"404"},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1689","name":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1689","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Repository  /  Oval Repository","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.openbsd.org/errata38.html#sendmail","name":"http://www.openbsd.org/errata38.html#sendmail","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"OpenBSD 3.8 errata","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/17192","name":"http://www.securityfocus.com/bid/17192","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Sendmail Asynchronous Signal Handling Remote Code Execution Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only","name":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Search results","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2006-0058","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2006-0058","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.2","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.4","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"58","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"sendmail","cpe5":"sendmail","cpe6":"8.13.5","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2006","cve_id":"58","cve":"CVE-2006-0058","epss":"0.589900000","percentile":"0.982320000","score_date":"2026-04-18","updated_at":"2026-04-19 00:10:45"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T16:18:20.809Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"ADV-2006-1529","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1529"},{"name":"HPSBTU02116","tags":["vendor-advisory","x_refsource_HP","x_transferred"],"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"19450","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19450"},{"name":"DSA-1015","tags":["vendor-advisory","x_refsource_DEBIAN","x_transferred"],"url":"http://www.debian.org/security/2006/dsa-1015"},{"name":"MDKSA-2006:058","tags":["vendor-advisory","x_refsource_MANDRIVA","x_transferred"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:058"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688"},{"name":"[3.8] 006: SECURITY FIX: March 25, 2006","tags":["vendor-advisory","x_refsource_OPENBSD","x_transferred"],"url":"http://www.openbsd.org/errata38.html#sendmail"},{"name":"VU#834865","tags":["third-party-advisory","x_refsource_CERT-VN","x_transferred"],"url":"http://www.kb.cert.org/vuls/id/834865"},{"name":"SCOSA-2006.24","tags":["vendor-advisory","x_refsource_SCO","x_transferred"],"url":"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt"},{"name":"19342","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19342"},{"name":"ADV-2006-1049","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1049"},{"name":"19774","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19774"},{"name":"FreeBSD-SA-06:13","tags":["vendor-advisory","x_refsource_FREEBSD","x_transferred"],"url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc"},{"name":"oval:org.mitre.oval:def:11074","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11074"},{"name":"20060401-01-U","tags":["vendor-advisory","x_refsource_SGI","x_transferred"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U"},{"name":"200494","tags":["vendor-advisory","x_refsource_SUNALERT","x_transferred"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-200494-1"},{"name":"19404","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19404"},{"name":"19367","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19367"},{"name":"OpenPKG-SA-2006.007","tags":["vendor-advisory","x_refsource_OPENPKG","x_transferred"],"url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.html"},{"name":"ADV-2006-1051","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1051"},{"name":"20060322 sendmail vuln advisories (CVE-2006-0058)","tags":["mailing-list","x_refsource_BUGTRAQ","x_transferred"],"url":"http://www.securityfocus.com/archive/1/428536/100/0/threaded"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.f-secure.com/security/fsc-2006-2.shtml"},{"name":"743","tags":["third-party-advisory","x_refsource_SREASON","x_transferred"],"url":"http://securityreason.com/securityalert/743"},{"name":"1015801","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1015801"},{"name":"HPSBUX02108","tags":["vendor-advisory","x_refsource_HP","x_transferred"],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"name":"19363","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19363"},{"name":"smtp-timeout-bo(24584)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/24584"},{"name":"TA06-081A","tags":["third-party-advisory","x_refsource_CERT","x_transferred"],"url":"http://www.us-cert.gov/cas/techalerts/TA06-081A.html"},{"name":"20723","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/20723"},{"name":"20243","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/20243"},{"name":"19407","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19407"},{"name":"ADV-2006-2189","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/2189"},{"name":"FEDORA-2006-194","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.html"},{"name":"20060302-01-P","tags":["vendor-advisory","x_refsource_SGI","x_transferred"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P"},{"name":"20060322 Sendmail Remote Signal Handling Vulnerability","tags":["third-party-advisory","x_refsource_ISS","x_transferred"],"url":"http://www.iss.net/threats/216.html"},{"name":"19466","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19466"},{"name":"19368","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19368"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"},{"name":"Q-151","tags":["third-party-advisory","government-resource","x_refsource_CIAC","x_transferred"],"url":"http://www.ciac.org/ciac/bulletins/q-151.shtml"},{"name":"SSRT061133","tags":["vendor-advisory","x_refsource_HP","x_transferred"],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm"},{"name":"19345","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19345"},{"name":"612","tags":["third-party-advisory","x_refsource_SREASON","x_transferred"],"url":"http://securityreason.com/securityalert/612"},{"name":"FEDORA-2006-193","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.html"},{"name":"19346","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19346"},{"name":"SSA:2006-081-01","tags":["vendor-advisory","x_refsource_SLACKWARE","x_transferred"],"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.619600"},{"name":"IY82992","tags":["vendor-advisory","x_refsource_AIXAPAR","x_transferred"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751"},{"name":"GLSA-200603-21","tags":["vendor-advisory","x_refsource_GENTOO","x_transferred"],"url":"http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml"},{"name":"IY82994","tags":["vendor-advisory","x_refsource_AIXAPAR","x_transferred"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only"},{"name":"IY82993","tags":["vendor-advisory","x_refsource_AIXAPAR","x_transferred"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only"},{"name":"ADV-2006-1068","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1068"},{"name":"RHSA-2006:0265","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0265.html"},{"name":"ADV-2006-2490","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/2490"},{"name":"ADV-2006-1072","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1072"},{"name":"FLSA:186277","tags":["vendor-advisory","x_refsource_FEDORA","x_transferred"],"url":"http://www.securityfocus.com/archive/1/428656/100/0/threaded"},{"name":"19360","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19360"},{"name":"19532","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19532"},{"name":"102324","tags":["vendor-advisory","x_refsource_SUNALERT","x_transferred"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1"},{"name":"19361","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19361"},{"name":"19676","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19676"},{"name":"19356","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19356"},{"name":"SUSE-SA:2006:017","tags":["vendor-advisory","x_refsource_SUSE","x_transferred"],"url":"http://www.novell.com/linux/security/advisories/2006_17_sendmail.html"},{"name":"24037","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://www.osvdb.org/24037"},{"name":"19349","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19349"},{"name":"102262","tags":["vendor-advisory","x_refsource_SUNALERT","x_transferred"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1"},{"name":"19394","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19394"},{"name":"SSRT061135","tags":["vendor-advisory","x_refsource_HP","x_transferred"],"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"ADV-2006-1139","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1139"},{"name":"ADV-2006-1157","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2006/1157"},{"name":"19533","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/19533"},{"name":"oval:org.mitre.oval:def:1689","tags":["vdb-entry","signature","x_refsource_OVAL","x_transferred"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1689"},{"name":"NetBSD-SA2006-010","tags":["vendor-advisory","x_refsource_NETBSD","x_transferred"],"url":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc"},{"name":"17192","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/17192"},{"name":"RHSA-2006:0264","tags":["vendor-advisory","x_refsource_REDHAT","x_transferred"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0264.html"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.sendmail.com/company/advisory/index.shtml"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2006-03-22T00:00:00.000Z","descriptions":[{"lang":"en","value":"Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2018-10-19T14:57:01.000Z","orgId":"37e5125f-f79b-445b-8fad-9564f167944b","shortName":"certcc"},"references":[{"name":"ADV-2006-1529","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1529"},{"name":"HPSBTU02116","tags":["vendor-advisory","x_refsource_HP"],"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"19450","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19450"},{"name":"DSA-1015","tags":["vendor-advisory","x_refsource_DEBIAN"],"url":"http://www.debian.org/security/2006/dsa-1015"},{"name":"MDKSA-2006:058","tags":["vendor-advisory","x_refsource_MANDRIVA"],"url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:058"},{"tags":["x_refsource_CONFIRM"],"url":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688"},{"name":"[3.8] 006: SECURITY FIX: March 25, 2006","tags":["vendor-advisory","x_refsource_OPENBSD"],"url":"http://www.openbsd.org/errata38.html#sendmail"},{"name":"VU#834865","tags":["third-party-advisory","x_refsource_CERT-VN"],"url":"http://www.kb.cert.org/vuls/id/834865"},{"name":"SCOSA-2006.24","tags":["vendor-advisory","x_refsource_SCO"],"url":"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt"},{"name":"19342","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19342"},{"name":"ADV-2006-1049","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1049"},{"name":"19774","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19774"},{"name":"FreeBSD-SA-06:13","tags":["vendor-advisory","x_refsource_FREEBSD"],"url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc"},{"name":"oval:org.mitre.oval:def:11074","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11074"},{"name":"20060401-01-U","tags":["vendor-advisory","x_refsource_SGI"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U"},{"name":"200494","tags":["vendor-advisory","x_refsource_SUNALERT"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-200494-1"},{"name":"19404","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19404"},{"name":"19367","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19367"},{"name":"OpenPKG-SA-2006.007","tags":["vendor-advisory","x_refsource_OPENPKG"],"url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.html"},{"name":"ADV-2006-1051","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1051"},{"name":"20060322 sendmail vuln advisories (CVE-2006-0058)","tags":["mailing-list","x_refsource_BUGTRAQ"],"url":"http://www.securityfocus.com/archive/1/428536/100/0/threaded"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.f-secure.com/security/fsc-2006-2.shtml"},{"name":"743","tags":["third-party-advisory","x_refsource_SREASON"],"url":"http://securityreason.com/securityalert/743"},{"name":"1015801","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1015801"},{"name":"HPSBUX02108","tags":["vendor-advisory","x_refsource_HP"],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"name":"19363","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19363"},{"name":"smtp-timeout-bo(24584)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/24584"},{"name":"TA06-081A","tags":["third-party-advisory","x_refsource_CERT"],"url":"http://www.us-cert.gov/cas/techalerts/TA06-081A.html"},{"name":"20723","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/20723"},{"name":"20243","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/20243"},{"name":"19407","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19407"},{"name":"ADV-2006-2189","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/2189"},{"name":"FEDORA-2006-194","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.html"},{"name":"20060302-01-P","tags":["vendor-advisory","x_refsource_SGI"],"url":"ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P"},{"name":"20060322 Sendmail Remote Signal Handling Vulnerability","tags":["third-party-advisory","x_refsource_ISS"],"url":"http://www.iss.net/threats/216.html"},{"name":"19466","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19466"},{"name":"19368","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19368"},{"tags":["x_refsource_CONFIRM"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"},{"name":"Q-151","tags":["third-party-advisory","government-resource","x_refsource_CIAC"],"url":"http://www.ciac.org/ciac/bulletins/q-151.shtml"},{"name":"SSRT061133","tags":["vendor-advisory","x_refsource_HP"],"url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"tags":["x_refsource_CONFIRM"],"url":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm"},{"name":"19345","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19345"},{"name":"612","tags":["third-party-advisory","x_refsource_SREASON"],"url":"http://securityreason.com/securityalert/612"},{"name":"FEDORA-2006-193","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.html"},{"name":"19346","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19346"},{"name":"SSA:2006-081-01","tags":["vendor-advisory","x_refsource_SLACKWARE"],"url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.619600"},{"name":"IY82992","tags":["vendor-advisory","x_refsource_AIXAPAR"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only"},{"tags":["x_refsource_CONFIRM"],"url":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751"},{"name":"GLSA-200603-21","tags":["vendor-advisory","x_refsource_GENTOO"],"url":"http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml"},{"name":"IY82994","tags":["vendor-advisory","x_refsource_AIXAPAR"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only"},{"name":"IY82993","tags":["vendor-advisory","x_refsource_AIXAPAR"],"url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only"},{"name":"ADV-2006-1068","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1068"},{"name":"RHSA-2006:0265","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0265.html"},{"name":"ADV-2006-2490","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/2490"},{"name":"ADV-2006-1072","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1072"},{"name":"FLSA:186277","tags":["vendor-advisory","x_refsource_FEDORA"],"url":"http://www.securityfocus.com/archive/1/428656/100/0/threaded"},{"name":"19360","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19360"},{"name":"19532","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19532"},{"name":"102324","tags":["vendor-advisory","x_refsource_SUNALERT"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1"},{"name":"19361","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19361"},{"name":"19676","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19676"},{"name":"19356","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19356"},{"name":"SUSE-SA:2006:017","tags":["vendor-advisory","x_refsource_SUSE"],"url":"http://www.novell.com/linux/security/advisories/2006_17_sendmail.html"},{"name":"24037","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://www.osvdb.org/24037"},{"name":"19349","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19349"},{"name":"102262","tags":["vendor-advisory","x_refsource_SUNALERT"],"url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1"},{"name":"19394","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19394"},{"name":"SSRT061135","tags":["vendor-advisory","x_refsource_HP"],"url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"ADV-2006-1139","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1139"},{"name":"ADV-2006-1157","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2006/1157"},{"name":"19533","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/19533"},{"name":"oval:org.mitre.oval:def:1689","tags":["vdb-entry","signature","x_refsource_OVAL"],"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1689"},{"name":"NetBSD-SA2006-010","tags":["vendor-advisory","x_refsource_NETBSD"],"url":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc"},{"name":"17192","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/17192"},{"name":"RHSA-2006:0264","tags":["vendor-advisory","x_refsource_REDHAT"],"url":"http://www.redhat.com/support/errata/RHSA-2006-0264.html"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.sendmail.com/company/advisory/index.shtml"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cert@cert.org","ID":"CVE-2006-0058","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"ADV-2006-1529","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1529"},{"name":"HPSBTU02116","refsource":"HP","url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"19450","refsource":"SECUNIA","url":"http://secunia.com/advisories/19450"},{"name":"DSA-1015","refsource":"DEBIAN","url":"http://www.debian.org/security/2006/dsa-1015"},{"name":"MDKSA-2006:058","refsource":"MANDRIVA","url":"http://www.mandriva.com/security/advisories?name=MDKSA-2006:058"},{"name":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688","refsource":"CONFIRM","url":"http://www14.software.ibm.com/webapp/set2/sas/f/hmc/power5/install/v52.Readme.html#MH00688"},{"name":"[3.8] 006: SECURITY FIX: March 25, 2006","refsource":"OPENBSD","url":"http://www.openbsd.org/errata38.html#sendmail"},{"name":"VU#834865","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/834865"},{"name":"SCOSA-2006.24","refsource":"SCO","url":"ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.24/SCOSA-2006.24.txt"},{"name":"19342","refsource":"SECUNIA","url":"http://secunia.com/advisories/19342"},{"name":"ADV-2006-1049","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1049"},{"name":"19774","refsource":"SECUNIA","url":"http://secunia.com/advisories/19774"},{"name":"FreeBSD-SA-06:13","refsource":"FREEBSD","url":"ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:13.sendmail.asc"},{"name":"oval:org.mitre.oval:def:11074","refsource":"OVAL","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11074"},{"name":"20060401-01-U","refsource":"SGI","url":"ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U"},{"name":"200494","refsource":"SUNALERT","url":"http://sunsolve.sun.com/search/document.do?assetkey=1-66-200494-1"},{"name":"19404","refsource":"SECUNIA","url":"http://secunia.com/advisories/19404"},{"name":"19367","refsource":"SECUNIA","url":"http://secunia.com/advisories/19367"},{"name":"OpenPKG-SA-2006.007","refsource":"OPENPKG","url":"http://www.openpkg.org/security/advisories/OpenPKG-SA-2006.007-sendmail.html"},{"name":"ADV-2006-1051","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1051"},{"name":"20060322 sendmail vuln advisories (CVE-2006-0058)","refsource":"BUGTRAQ","url":"http://www.securityfocus.com/archive/1/428536/100/0/threaded"},{"name":"http://www.f-secure.com/security/fsc-2006-2.shtml","refsource":"CONFIRM","url":"http://www.f-secure.com/security/fsc-2006-2.shtml"},{"name":"743","refsource":"SREASON","url":"http://securityreason.com/securityalert/743"},{"name":"1015801","refsource":"SECTRACK","url":"http://securitytracker.com/id?1015801"},{"name":"HPSBUX02108","refsource":"HP","url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"name":"19363","refsource":"SECUNIA","url":"http://secunia.com/advisories/19363"},{"name":"smtp-timeout-bo(24584)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/24584"},{"name":"TA06-081A","refsource":"CERT","url":"http://www.us-cert.gov/cas/techalerts/TA06-081A.html"},{"name":"20723","refsource":"SECUNIA","url":"http://secunia.com/advisories/20723"},{"name":"20243","refsource":"SECUNIA","url":"http://secunia.com/advisories/20243"},{"name":"19407","refsource":"SECUNIA","url":"http://secunia.com/advisories/19407"},{"name":"ADV-2006-2189","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/2189"},{"name":"FEDORA-2006-194","refsource":"FEDORA","url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00017.html"},{"name":"20060302-01-P","refsource":"SGI","url":"ftp://patches.sgi.com/support/free/security/advisories/20060302-01-P"},{"name":"20060322 Sendmail Remote Signal Handling Vulnerability","refsource":"ISS","url":"http://www.iss.net/threats/216.html"},{"name":"19466","refsource":"SECUNIA","url":"http://secunia.com/advisories/19466"},{"name":"19368","refsource":"SECUNIA","url":"http://secunia.com/advisories/19368"},{"name":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm","refsource":"CONFIRM","url":"http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"},{"name":"Q-151","refsource":"CIAC","url":"http://www.ciac.org/ciac/bulletins/q-151.shtml"},{"name":"SSRT061133","refsource":"HP","url":"http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c00629555"},{"name":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm","refsource":"CONFIRM","url":"http://support.avaya.com/elmodocs2/security/ASA-2006-074.htm"},{"name":"19345","refsource":"SECUNIA","url":"http://secunia.com/advisories/19345"},{"name":"612","refsource":"SREASON","url":"http://securityreason.com/securityalert/612"},{"name":"FEDORA-2006-193","refsource":"FEDORA","url":"http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00018.html"},{"name":"19346","refsource":"SECUNIA","url":"http://secunia.com/advisories/19346"},{"name":"SSA:2006-081-01","refsource":"SLACKWARE","url":"http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.619600"},{"name":"IY82992","refsource":"AIXAPAR","url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82992&apar=only"},{"name":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751","refsource":"CONFIRM","url":"http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18&ID=2751"},{"name":"GLSA-200603-21","refsource":"GENTOO","url":"http://www.gentoo.org/security/en/glsa/glsa-200603-21.xml"},{"name":"IY82994","refsource":"AIXAPAR","url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82994&apar=only"},{"name":"IY82993","refsource":"AIXAPAR","url":"http://www-1.ibm.com/support/search.wss?rs=0&q=IY82993&apar=only"},{"name":"ADV-2006-1068","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1068"},{"name":"RHSA-2006:0265","refsource":"REDHAT","url":"http://www.redhat.com/support/errata/RHSA-2006-0265.html"},{"name":"ADV-2006-2490","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/2490"},{"name":"ADV-2006-1072","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1072"},{"name":"FLSA:186277","refsource":"FEDORA","url":"http://www.securityfocus.com/archive/1/428656/100/0/threaded"},{"name":"19360","refsource":"SECUNIA","url":"http://secunia.com/advisories/19360"},{"name":"19532","refsource":"SECUNIA","url":"http://secunia.com/advisories/19532"},{"name":"102324","refsource":"SUNALERT","url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102324-1"},{"name":"19361","refsource":"SECUNIA","url":"http://secunia.com/advisories/19361"},{"name":"19676","refsource":"SECUNIA","url":"http://secunia.com/advisories/19676"},{"name":"19356","refsource":"SECUNIA","url":"http://secunia.com/advisories/19356"},{"name":"SUSE-SA:2006:017","refsource":"SUSE","url":"http://www.novell.com/linux/security/advisories/2006_17_sendmail.html"},{"name":"24037","refsource":"OSVDB","url":"http://www.osvdb.org/24037"},{"name":"19349","refsource":"SECUNIA","url":"http://secunia.com/advisories/19349"},{"name":"102262","refsource":"SUNALERT","url":"http://sunsolve.sun.com/search/document.do?assetkey=1-26-102262-1"},{"name":"19394","refsource":"SECUNIA","url":"http://secunia.com/advisories/19394"},{"name":"SSRT061135","refsource":"HP","url":"http://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635"},{"name":"ADV-2006-1139","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1139"},{"name":"ADV-2006-1157","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/1157"},{"name":"19533","refsource":"SECUNIA","url":"http://secunia.com/advisories/19533"},{"name":"oval:org.mitre.oval:def:1689","refsource":"OVAL","url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1689"},{"name":"NetBSD-SA2006-010","refsource":"NETBSD","url":"ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-010.txt.asc"},{"name":"17192","refsource":"BID","url":"http://www.securityfocus.com/bid/17192"},{"name":"RHSA-2006:0264","refsource":"REDHAT","url":"http://www.redhat.com/support/errata/RHSA-2006-0264.html"},{"name":"http://www.sendmail.com/company/advisory/index.shtml","refsource":"CONFIRM","url":"http://www.sendmail.com/company/advisory/index.shtml"}]}}}},"cveMetadata":{"assignerOrgId":"37e5125f-f79b-445b-8fad-9564f167944b","assignerShortName":"certcc","cveId":"CVE-2006-0058","datePublished":"2006-03-22T20:00:00.000Z","dateReserved":"2006-01-01T00:00:00.000Z","dateUpdated":"2024-08-07T16:18:20.809Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2006-03-22 20:06:00","lastModifiedDate":"2025-04-03 01:03:51","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:H/Au:N/C:C/I:C/A:C","baseScore":7.6,"accessVector":"NETWORK","accessComplexity":"HIGH","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":4.9,"impactScore":10,"acInsufInfo":false,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.0:*:*:*:*:*:*:*","matchCriteriaId":"B4E0D099-C149-4923-A06C-200A23CEA943"},{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.1:*:*:*:*:*:*:*","matchCriteriaId":"01B75BCD-9187-4DB0-903D-5F73429AEE78"},{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.2:*:*:*:*:*:*:*","matchCriteriaId":"F7DB5E2A-0E79-45DF-BD85-FD216A970771"},{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.3:*:*:*:*:*:*:*","matchCriteriaId":"D20FAC60-445E-4847-B5DE-8ACDDA55E1CA"},{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.4:*:*:*:*:*:*:*","matchCriteriaId":"9962F81C-A08C-4F8E-A07C-4F4B5C441EA5"},{"vulnerable":true,"criteria":"cpe:2.3:a:sendmail:sendmail:8.13.5:*:*:*:*:*:*:*","matchCriteriaId":"A38C234D-EF75-4A96-A0FD-E1DDDADAC1BC"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2006","CveId":"58","Ordinal":"1","Title":"CVE-2006-0058","CVE":"CVE-2006-0058","Year":"2006"},"notes":[{"CveYear":"2006","CveId":"58","Ordinal":"1","NoteData":"Signal handler race condition in Sendmail 8.13.x before 8.13.6 allows remote attackers to execute arbitrary code by triggering timeouts in a way that causes the setjmp and longjmp function calls to be interrupted and modify unexpected memory locations.","Type":"Description","Title":"CVE-2006-0058"},{"CveYear":"2006","CveId":"58","Ordinal":"2","NoteData":"2006-03-22","Type":"Other","Title":"Published"},{"CveYear":"2006","CveId":"58","Ordinal":"3","NoteData":"2018-10-19","Type":"Other","Title":"Modified"}]}}}