[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] *ALERT* UPDATED BID 3163 (URGENCY 6.58): Sendmail Debugger ArbitraryCode Execution Vulnerability (fwd)
- Subject: Re: [cobalt-security] *ALERT* UPDATED BID 3163 (URGENCY 6.58): Sendmail Debugger ArbitraryCode Execution Vulnerability (fwd)
- From: ProServe - Peter Batenburg <peter@xxxxxxxxxxx>
- Date: Tue, 14 Jan 2003 11:18:47 +0100 (CET)
- Organization: ProServe (http://www.proserve.nl)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Jeff,
I'm wondering where you found this message. Afaik I sent this over a jear
ago to the list.
On Tue, 14 Jan 2003, Jeff Lasman wrote:
> ProServe - Peter Batenburg wrote:
>
> >
> > Is cobalt going to do something about this? Allready 2 exploits have been
> > released on the bugtraq mailing list.
>
> I'm not sure what version of sendmail your server is running. Mine is
> running 8.10.2.
>
> 8.10 versions of sendmail and earlier are NOT subject to this exploit.
>
> Additionally, this exploit can only be performed by local users.
>
> Jeff
>
--
/- Met vriendelijke groet/With kind regards, -\
<- Peter Batenburg - ProServe B.V. - www.proserve.nl ->
\- tel: +31-184-423815 - fax: +31-184-417160 -/