[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] [ MDKSA-2006:104 ] - Updated sendmail packages fix remotely exploitable vulnerability
- To: security@xxxxxxxxxxxx
- Subject: Re: [Full-disclosure] [ MDKSA-2006:104 ] - Updated sendmail packages fix remotely exploitable vulnerability
- From: 3APA3A <3APA3A@xxxxxxxxxxxxxxxx>
- Date: Thu, 15 Jun 2006 12:14:13 +0400
Dear security@xxxxxxxxxxxx,
smc> References:
smc> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1173
Description Unspecified vulnerability in HP Tru64 UNIX 4.0F PK8 up to
5.1B-3 and HP Internet Express for Tru64 UNIX 6.3 through 6.5, when
running Sendmail, might allow remote attackers to cause a denial of
service or execute arbitrary code. NOTE: as of 20060607, due to the lack
of details, it is not publicly known whether this issue is within
Sendmail itself, and/or if it is specific to HP.
smc> http://www.cert.org/advisories/146718
Error 404.
www.sendmail.org
Recent News
* Sendmail 8.13.7 is available (2006-06-14); it contains a fix for a
potential denial of service problem caused by excessive recursion which leads
to stack exhaustion when attempting delivery of a malformed MIME message.
Does Somebody have details?
--
~/ZARAZA
http://www.security.nnov.ru/
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/