SecurityTracker: (Sendmail.com Issues Fix) Sendmail Race Condition in Signal Handler May Let Remote Users Trigger a Buffer Overflow to Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us |

SecurityTracker
Archives

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Category: Application (E-mail Server) > Sendmail

Vendors: Sendmail.com

(Sendmail.com Issues Fix) Sendmail Race Condition in Signal Handler May Let Remote Users Trigger a Buffer Overflow to Execute Arbitrary Code

SecurityTracker Alert ID: 1015807

SecurityTracker URL: http://securitytracker.com/id/1015807

CVE Reference: CVE-2006-0058 (Links to External Site)

Date: Mar 22 2006

Impact: Execution of arbitrary code via network, Root access via network

Fix Available: Yes Vendor Confirmed: Yes

Description: A vulnerability was reported in Sendmail. A remote user may be able to execute arbitrary code on the target system.

Under certain specific timing conditions, a remote user can send specially crafted e-mail data to the target system to exploit a race condition in a signal handler and trigger a buffer overflow. This may allow the remote user to execute arbitrary code on the target system with the privileges of the sendmail process.

ISS discovered this vulnerability.

The original advisory is available at:

http://xforce.iss.net/xforce/xfdb/24584

Impact: A remote user can execute arbitrary code on the target system with the privileges of the sendmail process (typically root privileges).

Solution: Sendmail.com has issued a fix.

The following Sendmail.com commercial products are affected:

1. Sendmail Switch, Managed MTA, and Multi-Switch v 3.1.7 and earlier for Solaris, Linux, AIX, and HP-UX
2. Sendmail Sentrion 1.1 Appliance
3. Sendmail Advanced Message Server and Message Store v 2.2 and earlier for Solaris, Linux, AIX, and HP-UX
4. Intelligent Quarantine 3.0 for Solaris and Linux

The Sendmail.com advisory is available at:

http://www.sendmail.com/company/advisory/index.shtml

Vendor URL: www.sendmail.com/company/advisory/index.shtml (Links to External Site)

Cause: Boundary error

Underlying OS: Linux (Any), UNIX (AIX), UNIX (HP/UX), UNIX (Solaris - SunOS)

Message History: This archive entry is a follow-up to the message listed below.

Sendmail Race Condition in Signal Handler May Let Remote Users Trigger a Buffer Overflow to Execute Arbitrary Code

Source Message Contents

Date: Wed, 22 Mar 2006 15:02:54 -0500
Subject: CVE-2006-0058



http://www.sendmail.com/company/advisory/index.shtml

CVE-2006-0058

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us
Copyright 2012, SecurityGlobal.net LLC