8lgm-16.txt
e6df972a6e3b894e0b59ad85ebaf0ffa3a412f37fb7865ced973c8e05a3e7c4f
This advisory has been sent to:
comp.security.unix
Sun Microsystems <security-alert@sun.com>
===============================================================================
[8lgm]-Advisory-16.UNIX.sendmail-6-Dec-1994
PROGRAM:
sendmail(8)
VERSION:
SunOS 4.x Sendmail - all versions including latest
4/5/94 Sendmail Jumbo Patch 100377-15
IMPACT:
Any user on the system can become root. This cannot be exploited
remotely.
REPEAT BY:
Exploit details will be made available on the 8lgm fileserver
at 00:00GMT on Friday 27th January 1995. To retrieve these
details, send a mail containing the line:
send [8lgm]-Advisory-16.sendmail-6-Dec-1994-EXPLOIT
to 8lgm-fileserver@bagpuss.demon.co.uk. Requests for the script
to be sent before this date will be directed to /dev/null.
FIX:
We recommend that security conscious sites upgrade immediately
to UCB Sendmail 8.6.9, as Suns sendmail is generally recognised
as being broken. Your options are:
1. Obtain patch from your vendor.
2. Build and install sendmail 8.6.9, available from:
ftp.cs.berkeley.edu:/ucb/sendmail/sendmail.8.6.9.*
FEEDBACK AND CONTACT INFORMATION:
8lgm-request@bagpuss.demon.co.uk (Mailing list additions -
processed automatically;
just send any message)
8lgm@bagpuss.demon.co.uk (Everything else)
NB: 8lgm-bugs@bagpuss.demon.co.uk has been closed.
8LGM MAILING LIST:
Send any message to 8lgm-request@bagpuss.demon.co.uk and the
address you mail from will automatically be added to the list.
If you need to subscribe to an address you cannot mail from
(eg an alias), send mail to 8lgm@bagpuss.demon.co.uk and request
to be added to the list. Due to our mail volume, we appreciate
it if you can use 8lgm-request instead; thus if you need to
subscribe an alias, please look into using, say sendmail -f,
if possible.
8LGM FILESERVER:
All [8LGM] advisories may be obtained via the [8LGM] fileserver.
For details, 'echo help | mail 8lgm-fileserver@bagpuss.demon.co.uk'
===========================================================================