[543] in Intrusion Detection Systems


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: CIAC Bulletin G-09: Unix sendmail vulnerability

daemon@ATHENA.MIT.EDU (Fred Cohen)
Wed Feb 7 11:48:57 1996

From: fc@all.net (Fred Cohen)
To: ids@uow.edu.au
Date: Tue, 6 Feb 1996 12:20:06 -0500 (EST)
In-Reply-To: <v02120d01ad360785aca2@[128.115.138.237]> from "Frank Swift at Home" at Jan 31, 96 10:59:46 pm
Reply-To: ids@uow.edu.au

Hi Frank:

I have tried to generate buffer overruns from my sendmail but only get
an error message stating that the input line is too long.

I am running Sun's Sendmail 4.1/3.2.012693 under SunOS Release 4.1.3_U

Is there a test I can do to determine whether or not this vulnerability
applies? I am running Sendmail through tcp wrappers in case this makes a
difference. 

-> See: Info-Sec Heaven at URL http://all.net/
Management Analytics - 216-686-0090 - PO Box 1480, Hudson, OH 44236


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[543] in Intrusion Detection Systems

Re: CIAC Bulletin G-09: Unix sendmail vulnerability

daemon@ATHENA.MIT.EDU (Fred Cohen)Wed Feb 7 11:48:57 1996

daemon@ATHENA.MIT.EDU (Fred Cohen)
Wed Feb 7 11:48:57 1996