Bugtraq mailing list archives

Re: new sendmail bug?

From: nihilis () solar sky net (joel)
Date: Thu, 23 Feb 1995 00:43:23 -0600 (CST)


On Wed, 22 Feb 1995, James W. Abendschan wrote:

I gathered it had something to do with imbedding newlines in
either the info it reads from identd and/or imbedding newlines
when giving it command line options.. but it's hard to say.


The updated sendmail readme stuff (quoted below) indicates (actually, it
does more than indicate, it specifies) identd and bogus values from 
sites that hate it.  perhaps it constructs its own To: line for us? and 
mails stuff accordingly.

There's something else first, though, which I don't know anything about. 
perhaps someone else can shed light on it.

- Joel

Me, Employer, Seperate, Blahblahblah

--
GCS/E   -d+(?) H++ s-: !g p? !au a-- w+ v- C++ ULS++++$ P+>++ L++@ 3 E- 
N++(+) K W M- V- po Y+ t S- j R G' tv>- b>+ D+ B- e(+) u+(*) h! f r>+++ 
                                  n-@ y+

From the readme (patch format):


+ 8.6.10/8.6.10 95/02/10
+ SECURITY: Diagnose bogus values to some command line flags that
+       could allow trash to get into headers and qf files.
+ Validate the name of the user returned by the IDENT protocol.
+       Some systems that really dislike IDENT send intentionally
+       bogus information.  Problem pointed out by Michael Bushnell 
+       of the Free Software Foundation. Has some security
+       implications.

Current thread:

Re: fcntl() file locking under Solaris 2.4, (continued)
- - - Re: fcntl() file locking under Solaris 2.4 Jas (Feb 22)
    - snooper watchers Ben Taylor (Feb 22)
    - Re: snooper watchers Eric Conrad (Feb 22)
    - Re: snooper watchers Ben Taylor (Feb 22)
    - CERT Advisory CA-95:05.sendmail.vulnerabilities (fwd) Paul 'Shag' Walmsley (Feb 22)
    - Re: CERT Advisory CA-95:05.sendmail.vulnerabilities (fwd) Dave Schweisguth (Feb 23)
    - Sendmail 8.6.9 security hole Igor V. Semenyuk (Feb 22)
    - Re: Sendmail 8.6.9 security hole Christopher Samuel (Feb 23)
    - Sun Security Bulletin #129 (sendmail) Mark Graff (Feb 22)
    - new sendmail bug? James W. Abendschan (Feb 22)
    - Re: new sendmail bug? joel (Feb 22)
    - Re: new sendmail bug? Dave Horsfall (Feb 22)
    - Sendmail 8.6.10: what's different? der Mouse (Feb 23)
    - X keyboard sniffing Paul Howell (Feb 23)
    - Re: Sendmail 8.6.10: what's different? Igor V. Semenyuk (Feb 23)
    - Re: Sendmail 8.6.10: what's different? Peter Wemm (Feb 24)
    - Re: Sendmail 8.6.10: what's different? Peter Wemm (Feb 23)
    - Re: Sendmail 8.6.10: what's different? Christian Wettergren (Feb 24)
    - Re: new sendmail bug? Michael Van Norman (Feb 23)
    - Re: snooper watchers Aleph One (Feb 22)
    - Re: HP-UX Problem... Pete Shipley (Feb 21)