Re: patch to explain sendmail_ nasl

From: Javier Fernandez-Sanguino (jfernandezat_private)
Date: Thu Mar 06 2003 - 01:58:03 PST

Next message: Vincent Renardias: "Re: patch to explain sendmail_ nasl"

Previous message: Javier Fernandez-Sanguino: "Re: ipswitch IMail web interface"
In reply to: Michael Scheidell: "patch to explain sendmail_ nasl"
Next in thread: Vincent Renardias: "Re: patch to explain sendmail_ nasl"
Reply: Vincent Renardias: "Re: patch to explain sendmail_ nasl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Michael Scheidell wrote:
> , this nasl is going to get patched several times, and while we
> are doing that, I hope that we can add this verbage to it (attached)
> 
> It explains that if you patch sendmail, or run this nasl against a patched
> sendmail, you will get a false positive.

Shouldn't we also link to the CERT advisory or the CERT's VU? It gives a 
detailed list of which vendors are vulnerable:
http://www.cert.org/advisories/CA-2003-07.html
http://www.kb.cert.org/vuls/id/398025

Maybe we also need a script_vu_id()?

Regards

Javi

Next message: Vincent Renardias: "Re: patch to explain sendmail_ nasl"
Previous message: Javier Fernandez-Sanguino: "Re: ipswitch IMail web interface"
In reply to: Michael Scheidell: "patch to explain sendmail_ nasl"
Next in thread: Vincent Renardias: "Re: patch to explain sendmail_ nasl"
Reply: Vincent Renardias: "Re: patch to explain sendmail_ nasl"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Mar 06 2003 - 01:59:26 PST