Sendmail IDENT Remote root Vulnerability
BID:2311
Info
Sendmail IDENT Remote root Vulnerability
| Bugtraq ID: | 2311 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Unknown |
| Published: | Feb 24 1994 12:00AM |
| Updated: | Feb 24 1994 12:00AM |
| Credit: | Disclosed in CIAC bulletin F-13 dated Feb 22, 1995. |
| Vulnerable: |
Eric Allman Sendmail 8.6.9 |
| Not Vulnerable: |
Eric Allman Sendmail 8.11 Eric Allman Sendmail 8.10.1 Eric Allman Sendmail 8.10 Eric Allman Sendmail 8.9.3 -3slink1 Eric Allman Sendmail 8.9.3 Eric Allman Sendmail 8.9.1 Eric Allman Sendmail 8.8.5 Eric Allman Sendmail 8.8.4 Eric Allman Sendmail 8.8.3 Eric Allman Sendmail 8.8.2 Eric Allman Sendmail 8.8.1 Eric Allman Sendmail 8.8 .x Eric Allman Sendmail 8.8 Eric Allman Sendmail 8.7.6 Eric Allman Sendmail 8.7.5 Eric Allman Sendmail 8.7.4 Eric Allman Sendmail 8.7.3 Eric Allman Sendmail 8.7.2 Eric Allman Sendmail 8.7.1 Eric Allman Sendmail 8.7 .x Eric Allman Sendmail 8.6.10 |
Discussion
Sendmail IDENT Remote root Vulnerability
A vulnerability in the IDENT function of sendmail 8.6.9 allows attackers to obtain remote root access. Very little other information on this vulnerability is currently available; this is an old vulnerability.
A vulnerability in the IDENT function of sendmail 8.6.9 allows attackers to obtain remote root access. Very little other information on this vulnerability is currently available; this is an old vulnerability.
Solution / Fix
Sendmail IDENT Remote root Vulnerability
Solution:
Upgrade to at least version 8.6.10 of sendmail.
Solution:
Upgrade to at least version 8.6.10 of sendmail.
References
Sendmail IDENT Remote root Vulnerability
References:
References:
- Re: Sendmail 8.6.9 security hole (Christopher Samuel < [email protected] >)