Bugtraq mailing list archives

Re: Sendmail details ?

From: newsham () wiliki eng hawaii edu (Timothy Newsham)
Date: Thu, 7 Apr 1994 18:43:33 -1000 (HST)

How about sum details regarding how sendmail -d can be abused to get root access
? I wud really appreciate it if the ppl. on this list got more technical and
less full of B***S**t .... this is not a CERT list or sumthing . so let us be open.

I have had problems in the past with sendmail (the pipe to program disaster), and
wud like to be on the right side of the fence for once.

Thanx,

Manish.


This mail is dated Mar 16 so maybe it wasnt released back then but
there was a full technical discussion of this hole as well as a
sample exploit script posted.

Current thread:

Sendmail details ? Manish N. Dharwadker (Mar 16)
- Re: Sendmail details ? Karl Strickland (Apr 07)
- Re: Sendmail details ? Scott Chasin (Apr 07)
- Re: Sendmail details ? Timothy Newsham (Apr 07)
- [rick () msc cornell edu: AFS 3.3 ftpd security problem] Perry E. Metzger (Apr 08)
- Sendmail hole ? Manish N. Dharwadker (Apr 08)