Bugtraq mailing list archives
Re: Sendmail 8.7, 8.7.1
From: casper () Holland Sun COM (Casper Dik)
Date: Tue, 10 Oct 1995 09:14:51 +0100
Who knows what the root-shell-giving security hole is in Sendmail 8.6.12 that was incompletely patched in 8.7, and (supposedly) finally patched in 8.7.1?
It's just syslog() overruning the stack again. There's also another problem which causes the datas segment to be overrun, but that's not as easy to abuse (if at all). Casper
Current thread:
- Re: Netscape 2.0b1 for Win95 (fwd) Aleph One (Oct 09)
- Sendmail 8.7, 8.7.1 Charles Howes (Oct 09)
- Re: Sendmail 8.7, 8.7.1 Casper Dik (Oct 10)
- Re: Sendmail 8.7, 8.7.1 SnoCrash (Oct 10)
- Re: Sendmail 8.7, 8.7.1 Andrew Cameron (Oct 10)
- Netscape problems (again)... Jay 'Whip' Grizzard (Oct 10)
- s-bits disappear ? Bernd Lehle (Oct 11)
- Re: s-bits disappear ? Neil Readwin (Oct 12)
- Sun's Loadmodule Patch Neil Woods (Oct 18)
- FW: WinNews Special Issue Scott Chasin (Oct 22)
- SunOS 5.5 Beta Aleph One (Oct 24)
- denial of service attack possible Mark Thomas (Oct 26)
- Re: denial of service attack possible Darren Reed (Oct 27)
- Re: Sendmail 8.7, 8.7.1 Casper Dik (Oct 10)
- Sendmail 8.7, 8.7.1 Charles Howes (Oct 09)