From: Yamnicky (uq626926@es.bss.boeing.com)
Date: Thu Mar 06 2003 - 14:09:35 EST
Managers,
I imagine most of you are aware of the most recent CERT advisory
CA-2003-07 Sendmail. Supposedly all versions prior to 8.12.8 are affected.
>From the README:
"This vulnerability is message-oriented as opposed to connection-
oriented. That means that the vulnerability is triggered by the contents
of a specially-crafted email message rather than by lower-level network
traffic."
HP/Compaq has a patch available for Tru64 5.1. The README file can be
found at
http://ftp.support.compaq.com/patches/public/Readmes/unix/t64v51b19-c0169100-168
82-es-20030211.README
I have a collection of alpha boxes running 4.0F with sendmail 8.8.8. Has
there been any discussion to date regarding a fix for those of us not
running 5.1?
Any information would be greatly appreciated.
Thank You
/Mark
--------------------------------------------------------------------
The most precious thing we have is life. Yet it has absolutely no trade-in
value.
This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:49:10 EDT