[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] poprelay: serious security bug
- Subject: Re: [cobalt-security] poprelay: serious security bug
- From: Carrie Bartkowiak <ravencarrie@xxxxxxxx>
- Date: Mon, 9 Jul 2001 19:55:27 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
On Mon, 9 Jul 2001 15:12:53 -0400 (EDT), Jonathan M. Slivko wrote:
>What is the exact nature of this bug in poprelay? -- Jonathan
I really don't mean to be snide here, Jonathan, but if you had read
the message that you top-posted over, you'd have the answer to your
question.
The full explanation and exploit can be found at (quoted from your
message):
>>http://www.securityfocus.com/templates/archive.pike?mid=194906&threa
>>ds=0&lis
>>> > t=1&end=2001-07-07&start=2001-07-01&fromthread=0&
And the 'exact nature' of it is (also quoted from the bottom of your
message):
>>> > The bug + exploit allows anyone to relay mail through the
>>server. We can
>>> > only hope that Cobalt comes out with a remedy for this problem
*
>>very*
>>> > quickly.
--
Carrie Bartkowiak, ravencarrie@xxxxxxxx on 7/9/01