[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability

Subject: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
Date: Tue, 4 Mar 2003 14:38:58 +0100
Organization: SOLARSPEED.NET
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Julian

> Any plans to make one for a raq2?

I gave it a brief look, but I hit an obstacle here. On a fully patched RaQ2 
there is sendmail-8.9.3-C7 installed. However, the SRPM on ftp.cobalt.com is 
for sendmail-8.9.3-C5.

If I use the SRPM for sendmail-8.9.3-C5 and patch it, then it could open up 
other holes which Sun Cobalt's C6 and C7 fixed. :o/

But it's great that Harald posted his sendmail 8.11.6 binary. So there's also 
an upgrade path for those with a RaQ2.

-- 

With best regards,

Michael Stauber

Follow-Ups:
- Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
  - From: Harald Kapper

References:
- RE: [cobalt-security] Remote Sendmail Header Processing Vulnerability
  - From: lists

Prev by Date: [cobalt-security] Re: Remote Sendmail Header Processing Vulnerability
Next by Date: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability
Previous by thread: [cobalt-security] Re: Remote Sendmail Header Processing Vulnerability
Next by thread: Re: [cobalt-security] Remote Sendmail Header Processing Vulnerability

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index