[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] poprelay: serious security bug

Subject: Re: [cobalt-security] poprelay: serious security bug
From: Carrie Bartkowiak <ravencarrie@xxxxxxxx>
Date: Mon, 9 Jul 2001 19:55:27 -0400
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

On Mon, 9 Jul 2001 15:12:53 -0400 (EDT), Jonathan M. Slivko wrote:
>What is the exact nature of this bug in poprelay? -- Jonathan

I really don't mean to be snide here, Jonathan, but if you had read 
the message that you top-posted over, you'd have the answer to your 
question.
The full explanation and exploit can be found at (quoted from your 
message):
>>http://www.securityfocus.com/templates/archive.pike?mid=194906&threa
>>ds=0&lis
>>> > t=1&end=2001-07-07&start=2001-07-01&fromthread=0&

And the 'exact nature' of it is (also quoted from the bottom of your 
message):
>>> > The bug + exploit allows anyone to relay mail through the
>>server. We can
>>> > only hope that Cobalt comes out with a remedy for this problem 
*
>>very*
>>> > quickly.
-- 
Carrie Bartkowiak, ravencarrie@xxxxxxxx on 7/9/01

References:
- Re: [cobalt-security] poprelay: serious security bug
  - From: Jonathan M. Slivko
- Re: [cobalt-security] poprelay: serious security bug
  - From: Jeff Lovell

Prev by Date: Re: [cobalt-security] Cobalt Cube Webmail directory traversal (fwd)
Next by Date: Re: [cobalt-security] poprelay: serious security bug
Previous by thread: Re: [cobalt-security] poprelay: serious security bug
Next by thread: [cobalt-security] poprelayd and sendmail relay authentication problem (Cobalt Raq3) (fwd)

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index