Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Sendmail temporary files privilege escalation

Sendmail temporary files privilege escalation

by Mario Miri on May 23rd, 2003 Some Sendmail scripts create temporary files in insecure manner which can be exploited to gain elevated privileges. Mentioned scripts are: expn checksendmail doublebounce.pl


Vulnerable:
Sendmail Consortium Sendmail 8.9.3
Sendmail Consortium Sendmail 8.12.3
Sendmail Consortium Sendmail 8.12.9


Solution:
Debian has released fixes which address this issue:
http://security.debian.org


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »