[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] poprelay: serious security bug

Subject: [cobalt-security] poprelay: serious security bug
From: "Jonathan Michaelson" <michaelsonjd@xxxxxxxxxxx>
Date: Wed, 4 Jul 2001 21:49:16 +0100
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hello,

For those running the poprelayd POP-before-relay daemon (including the
"official" Cobalt release), you should note that a serious bug + exploit has
been posted to BugTraq with specific reference to the Cobalt RaQ3 (but will
certainly affect _all_ the RaQ servers running poprelayd):

http://www.securityfocus.com/templates/archive.pike?mid=194906&threads=0&lis
t=1&end=2001-07-07&start=2001-07-01&fromthread=0&

The bug + exploit allows anyone to relay mail through the server. We can
only hope that Cobalt comes out with a remedy for this problem *very*
quickly.

Regards,
Jonathan

Follow-Ups:
- Re: [cobalt-security] poprelay: serious security bug
  - From: Robbert Hamburg
- RE: [cobalt-security] poprelay: serious security bug
  - From: Jim Carey
- Re: [cobalt-security] poprelay: serious security bug
  - From: Jonathan Michaelson
- Re: [cobalt-security] poprelay: serious security bug
  - From: Jonathan Michaelson
- Re: [cobalt-security] poprelay: serious security bug
  - From: Jeff Lovell

Prev by Date: Re: [cobalt-security] Re: Security Service Needed
Next by Date: Re: [cobalt-security] poprelay: serious security bug
Previous by thread: Re: [cobalt-security] Re: Security Service Needed
Next by thread: Re: [cobalt-security] poprelay: serious security bug

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index