(F-Secure Issues Fix) Sendmail Race Condition in Signal Handler May Let Remote Users Trigger a Buffer Overflow to Execute Arbitrary Code
|
|
SecurityTracker Alert ID: 1015838 |
|
SecurityTracker URL: http://securitytracker.com/id/1015838
|
|
CVE Reference:
CVE-2006-0058
(Links to External Site)
|
Date: Mar 28 2006
|
Impact:
Execution of arbitrary code via network, Root access via network
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): 3.1.0 and prior 3.1 versions; 3.2.4 and prior 3.2 versions
|
Description:
A vulnerability was reported in Sendmail. A remote user may be able to execute arbitrary code on the target system. F-Secure Messaging Security Gateway is affected.
Under certain specific timing conditions, a remote user can send specially crafted e-mail data to the target system to exploit a race condition in a signal handler and trigger a buffer overflow. This may allow the remote user to execute arbitrary code on the target system with the privileges of the sendmail process.
ISS discovered this vulnerability.
The original advisory is available at:
http://xforce.iss.net/xforce/xfdb/24584
|
Impact:
A remote user can execute arbitrary code on the target system with the privileges of the sendmail process (typically root privileges).
|
Solution:
F-Secure Messaging Security Gateway includes Sendmail. F-Secure has issued a hotfix, which will be distributed automatically by the delivery system, so users do not need to take any action.
The F-Secure advisory is available at:
http://www.f-secure.com/security/fsc-2006-2.shtml
|
Vendor URL: www.f-secure.com/security/fsc-2006-2.shtml (Links to External Site)
|
Cause:
Boundary error
|
Underlying OS:
|
|
Message History:
This archive entry is a follow-up to the message listed below.
|
Source Message Contents
|
Date: Tue, 28 Mar 2006 08:50:24 -0500
Subject: F-Secure Messaging Security Gateway vulnerability
|
http://www.f-secure.com/security/fsc-2006-2.shtml
CVE-2006-0058
|
|
