Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 16836

Summary: Sendmail Security Vulnerability
Product: Gentoo Linux Reporter: AJ Armstrong <aja>
Component: Current packagesAssignee: Gentoo Security <security>
Status: RESOLVED DUPLICATE    
Severity: critical CC: grandmasterlinux
Priority: High    
Version: unspecified   
Hardware: All   
OS: Linux   
URL: http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21950
Whiteboard:
Package list:
Runtime testing required: ---

Description AJ Armstrong 2003-03-04 11:50:36 UTC 
ISS X-Force has discovered a buffer overflow vulnerability in the Sendmail
Mail Transfer Agent (MTA). Attackers may remotely exploit this vulnerability to 
gain "root" or superuser control of any vulnerable Sendmail server.

Reproducible: Always
Steps to Reproduce:
1.
2.
3.
Comment 1 Martin Holzer (RETIRED) gentoo-dev 2003-03-04 12:01:09 UTC 
Sendmail versions from 5.79 to 8.12.7 are vulnerable
Comment 2 Martin Holzer (RETIRED) gentoo-dev 2003-03-04 12:02:27 UTC 

*** This bug has been marked as a duplicate of 16766 ***