[1299] in linux-security and linux-alert archive
[linux-security] Re: Sendmail 8.8.2 exploit.
daemon@ATHENA.MIT.EDU (Wolfgang Ley)
Tue Nov 19 14:41:11 1996
Old-X-Envelope-From: ley@cert.dfn.de Mon Nov 18 03:36:48 1996
From: Wolfgang Ley <ley@cert.dfn.de>
To: linux-security@redhat.com
Date: Mon, 18 Nov 1996 09:36:12 +0100 (MET)
In-Reply-To: <Pine.LNX.3.95.961117023402.9268A-100000@linnea.asogy.stockholm.se> from "Dawnshadow" at Nov 17, 96 02:36:33 am
Resent-From: linux-security@redhat.com
Reply-To: linux-security@redhat.com
-----BEGIN PGP SIGNED MESSAGE-----
Dawnshadow wrote:
>
> Hm, look what I got hold of today.. Works if sendmail is mode 4111 or
> similar:
[exploit script deleted]
Sendmail 8.8.3 (which is available now) fixes the problem. Get it from
ftp://ftp.sendmail.org/ucb/src/sendmail/
or
ftp://ftp.cert.dfn.de/pub/tools/net/sendmail/
Bye,
Wolfgang Ley (DFN-CERT)
- --
Wolfgang Ley, DFN-CERT, Vogt-Koelln-Str. 30, 22527 Hamburg, Germany
Email: ley@cert.dfn.de Phone: +49 40 5494-2262 Fax: +49 40 5494-2241
PGP-Key available via finger ley@ftp.cert.dfn.de any key-server or via
WWW from http://www.cert.dfn.de/~ley/ ...have a nice day
-----BEGIN PGP SIGNATURE-----
Version: 2.6.2i
iQCVAwUBMpAf+QQmfXmOCknRAQEsRgQAgMs0kJbgjtGi7Gcyzzr6QiIYoEflvgOI
BcLOgP7wMXEIAmzOexqkDp9AjMJK59yA5LTVv8+RKU/csxTHmf0mxd9XBXs7Cfsz
sBUMxt986ZOSrsIZyxa2hRrq+CR1antiYos7sNmMtM9ahIXQVln1u/1uC6Fi4siq
8iLNFjgg1rI=
=BJIb
-----END PGP SIGNATURE-----