Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_3

Bugtraq archives for 3rd quarter (Jul-Sep) 1998: Qpopper

Qpopper

digi (digiINREACH.NET)
Wed, 1 Jul 1998 19:11:42 -0700

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Michal Zalewski: "ircd 2.9.5 & ircii-pana DNS problems"
Previous message: Nicholas Blasgen: "Re: Security vulnerabilities in Win Servers"

Today, qpopper 2.52 was installed on saturn. (our primary server). Later
today, it was compromised, the intruders claimed to of used that to gain
root access. Neither of the intruders had access to the system before they
attempted to compromise it, I didnt see any message saying that only one
specific version was patched, so a coworker assumed that it was patched
and installed it. Either 2.52 is insecure, or the intruders are lying.

-- Brian Hourigan

Next message: Michal Zalewski: "ircd 2.9.5 & ircii-pana DNS problems"
Previous message: Nicholas Blasgen: "Re: Security vulnerabilities in Win Servers"