Qpopper

From: digi (digiat_private)
Date: Wed Jul 01 1998 - 19:11:42 PDT

Next message: Herbert Rosmanith: "pop_msg in debian/qpopper: core, but no exploit"

Previous message: Simon Halsall: "Re: Port 0 oddities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Today, qpopper 2.52 was installed on saturn. (our primary server). Later
today, it was compromised, the intruders claimed to of used that to gain
root access. Neither of the intruders had access to the system before they
attempted to compromise it, I didnt see any message saying that only one
specific version was patched, so a coworker assumed that it was patched
and installed it. Either 2.52 is insecure, or the intruders are lying.

-- Brian Hourigan

Next message: Herbert Rosmanith: "pop_msg in debian/qpopper: core, but no exploit"
Previous message: Simon Halsall: "Re: Port 0 oddities"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:01:39 PDT