Re: SendGate: Sendmail Multiple Vulnerabilities (Race Condition DoS, Memory Jumps, Integer Overflow)

To: Eric Allman <eric+bugtraq@xxxxxxxxxxxxx>
Subject: Re: SendGate: Sendmail Multiple Vulnerabilities (Race Condition DoS, Memory Jumps, Integer Overflow)
From: Gadi Evron <ge@xxxxxxxxxxxx>
Date: Sun, 26 Mar 2006 03:15:29 +0200
Cc: Theo de Raadt <deraadt@xxxxxxxxxxxxxxx>, bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <94AA69447EC5FFFA8BD55C68@2F1F64490D93969B16FBA656>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <200603241745.k2OHjR1D022620@xxxxxxxxxxxxxxx> <94AA69447EC5FFFA8BD55C68@2F1F64490D93969B16FBA656>
User-agent: Mozilla Thunderbird 1.0.2 (Windows/20050317)

Eric Allman wrote:

I know the guy who exploited it.  He's better than you think he is.
I'm sorry, I was not trying to imply in any way that Mark was blowingsmoke. I believe he can do it. Take my statement literally: /we/ don't/see/ how it can be practical. Perhaps I should have said "understand"instead of "see". The point was that this is not a trivial problem toexploit. But yes, I do believe it is real, and I think (hope) I madethat clear in my message.


2 public exploits and counting.

        Gadi.

References:
- Re: SendGate: Sendmail Multiple Vulnerabilities (Race Condition DoS, Memory Jumps, Integer Overflow)
  - From: Eric Allman

Prev by Date: Cantv/Movilnet's Web SMS vulnerability.
Next by Date: Re: Sudo tricks
Previous by thread: Re: SendGate: Sendmail Multiple Vulnerabilities (Race Condition DoS, Memory Jumps, Integer Overflow)
Next by thread: ArabPortal 2.0 Stable [ Full Patch Disclosure ]
Index(es):
- Date
- Thread