Forwarded From: Kiera Wooley <kwooleyat_private> Sendmail, Inc. Releases MIME Buffer Overflow Patch Several e-mail clients have recently been shown to have buffer overflows that may allow attackers to execute arbitrary commands on users' machines. Sendmail, Inc. has produced a patch for sendmail 8.9.1 that will proactively defend against such attacks. It is important to note that sendmail itself is not vulnerable to these attacks. By truncating long MIME headers before they arrive in end users' mailboxes, such attacks can be deflected before they can do damage. http://www.sendmail.org/ -o- Subscribe: mail majordomoat_private with "subscribe isn". Today's ISN Sponsor: Repent Security Incorporated [www.repsec.com]
This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 13:03:09 PDT