Real-world attacks on sendmail CA-2003-07 seen

From: Bennett Todd (betat_private)
Date: Fri Mar 07 2003 - 09:37:13 PST

Next message: Danny: "New virus outbreak."

Previous message: Christopher Cramer: "Re: Open mail relay surge"
Next in thread: Mike Tancsa: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Mike Tancsa: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Curt Wilson: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: jlewisat_private: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Barry Kokotailo: "RE: Real-world attacks on sendmail CA-2003-07 seen"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Just a heads-up everyone, the sendmail header parsing buffer
overflow announced this last Monday, as (among other things) CERT
CA-2003-07[1] is now being actively exploited on the internet.

We logged received msgs that triggered the truncator code this
morning at about 3 in the morning, US/Eastern; three different
attacks spread over two different MX hosts.

-Bennett

[1] <URL:http://www.cert.org/advisories/CA-2003-07.html>

application/pgp-signature attachment: stored

Next message: Danny: "New virus outbreak."
Previous message: Christopher Cramer: "Re: Open mail relay surge"
Next in thread: Mike Tancsa: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Mike Tancsa: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Curt Wilson: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: jlewisat_private: "Re: Real-world attacks on sendmail CA-2003-07 seen"
Reply: Barry Kokotailo: "RE: Real-world attacks on sendmail CA-2003-07 seen"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Mar 07 2003 - 14:35:09 PST