Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1994_1

Bugtraq archives for 1st quarter (Jan-Mar) 1994: Re: so...

Re: so...

Harry Mantakos (harrycs.umd.edu)
Wed, 16 Mar 1994 02:02:53 -0500

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Alain Durand: "the new sendmail BUG history"
Previous message: Benjamin Cline: "Security problem in sendmail versions 8.x.x"
In reply to: Perry E. Metzger: "so..."
Next in thread: steve: "Re: so..."

>So, does anyone know anything about this new Sendmail bug other than
>that it exists?

If you want to know more about it, grab the sendmail-8.6.7 
patch from ftp.cs.berkeley.edu. There are only 2 lines of 
code changed. The RELEASE_NOTES describes the change as:

+       SECURITY: it was possible to get root access by using wierd
+               values to the -d flag.  Thanks to Alain Durand of
+               INRIA for forwarding me the notice from the bugtraq
+               list.

Presumably this can only be exploited on the local machine to allow
a non-root user to become root.
-harry
------------------------------------------------------------------------------
Spoken: Harry Mantakos   Domain: harrycs.umd.edu      UUCP: uunet!mimsy!harry
Phone: 301-405-2750      USPS: U of Maryland, CS Dept., College Park, MD 20742

Next message: Alain Durand: "the new sendmail BUG history"
Previous message: Benjamin Cline: "Security problem in sendmail versions 8.x.x"
In reply to: Perry E. Metzger: "so..."
Next in thread: steve: "Re: so..."