Bugs
Niki Guldbrand
niki at lunar-linux.org
Mon Sep 1 11:28:43 GMT 2003
Hi All.
Time for the weekly monday bug mail ;-)
19. Sendmail
Vendor: Sendmail Consortium
A vulnerability was reported in certain versions of sendmail
when using DNS maps in the sendmail configuration file. A remote
user may be able to cause the mail service to crash or (in theory)
execute arbitrary code.
Impact: Denial of service via network
Alert: http://securitytracker.com/alerts/2003/Aug/1007564.html
21. Whois
Vendor: GNU [multiple authors]
Zone-h reported a buffer overflow in the GNU Whois client
software. Web-based applications that call whois may allow a
remote user to execute arbitrary code. The impact depends on how
the application invokes or integrates the whois client software.
Impact: Execution of arbitrary code via network
Alert: http://securitytracker.com/alerts/2003/Aug/1007562.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://dbguin.lunar-linux.org/mailman/private/lunar-dev/attachments/20030901/1d8efbb3/attachment.bin
More information about the lunar-dev
mailing list