[2748] in bugtraq
Re: Sendmail 6.x+ holes?
daemon@ATHENA.MIT.EDU (Kari E. Hurtta)
Thu Jun 20 13:32:32 1996
Date: Thu, 20 Jun 1996 19:48:15 +0300
Reply-To: Bugtraq List <BUGTRAQ@netspace.org>
From: "Kari E. Hurtta" <Kari.Hurtta@dionysos.fmi.fi>
To: Multiple recipients of list BUGTRAQ <BUGTRAQ@netspace.org>
In-Reply-To: <Pine.SUN.3.90.960620170627.1411I-100000@papaioea.manawatu.gen.nz> from Alan Brown at "Jun 20,
96 05:07:49 pm"
Alan Brown kirjoittaa:
> On Wed, 19 Jun 1996, Robert A. Boyd wrote:
>
> > Does anyone know of any recent exploits fro sendmail 6.x and up? I
> > suspect my machine might be vulnerable and am just curious as to any new
> > discoveries.
>
> 6.x doesn't exist afaik. :)
It IS listed in sendmail's RELEASE_NOTES.
Sendmail 8.7.5's RELEASE_NOTES file start with sendmail version 6.2 and
sendmail.cf version 6.1. Date string is: 92/12/30
> There are various well known exploits right up to 8.7.4? (5)?
> Most are listed on web pages if you do a quick search out of www.lycos.com
There is quite may SECURITY entries in RELEASE_NOTES.
