Bugtraq mailing list archives
Re: unsafe fgets() in sendmail's mail.local
From: ca+bugtraq () ZARDOC ENDMAIL ORG (Claus Assmann)
Date: Tue, 25 Apr 2000 09:10:54 -0700
On Mon, Apr 24, 2000, 3APA3A wrote:
Topic:
unsafe fgets() in sendmail's mail.local
1. Possibility to insert LMTP commands into e-mail message
2. Possibility of deadlock between sendmail and mail.local
3. Possibility to corrupt user's mailbox
4. Possibility to change e-mail headers of the message in user's
mailbox
Vulnerable software:
Problems 1 and 2: sendmail before 8.10.0 (8.9.3 tested), all
platforms
Problems 3 and 4: sendmail 8.10.0 and 8.10.1 (8.10.1 tested)
under Solaris only
Thanks for the notification and your help to create a patch. The attached patch will be in the next release of sendmail. PS: Content-Length: shouldn't be used anyway :-) <HR NOSHADE> <UL> <LI>text/plain attachment: p.m.c </UL>
Current thread:
- Network Security and Privacy JavaMan (Apr 19)
- Re: Network Security and Privacy B Potter (Apr 19)
- Re: Network Security and Privacy Cold Fire (Apr 20)
- pop3 spoon spoon (Apr 20)
- Re: pop3 Christopher P. Lindsey (Apr 21)
- Re: pop3 Jason Godsey (Apr 22)
- unsafe fgets() in sendmail's mail.local 3APA3A (Apr 24)
- Re: unsafe fgets() in sendmail's mail.local Claus Assmann (Apr 25)
- Re: pop3 Kris Kennaway (Apr 27)
- pop3 spoon spoon (Apr 20)
- Re: Network Security and Privacy dynamo (Apr 20)