All the latest UK technology news, reviews and analysis

Sendmail vulnerability exposed

by James Middleton

03 Sep 2001

Be the first to comment

  • Tweet this

Users of the popular Linux and Unix server email software Sendmail are being urged to patch their systems, as some most recent versions of the software contain a vulnerability which could give attackers administrator access to the machine.

Although an attacker would need to get command line access to the system, a multitude of companies, such as ISPs or universities that provide shell access to accounts, are at high risk.

Further reading

By sending a maliciously crafted command to the server, a hacker could gain administrator control of the machine.

The vulnerability is present in Sendmail open source versions between 8.11.0 and 8.11.5.

The bug has apparently been corrected in 8.11.6, but Sendmail warned that 8.12.0.Beta users should upgrade to 8.12.0.Beta19.

Sendmail has been an integral part of Unix server applications for well over a decade now and is often bundled with most Linux distributions too. The fact that it is open source has possibly added to its prevalence.

A number of Linux vendors, such as SuSE and Conectiva, have already released fixes for their particular flavour of the OS.

To Sendmail's credit, though, this is the first bug to be found in the application since 1997.

More info can be found here.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

Concept image representing virus malware

Malware levels starting to show signs of slowing

Related white papers

Related articles

Related jobs

Today's top stories

Microsoft Windows 8 start screen

Microsoft turns SkyDrive into cloud computing storage tool for Windows 8

PlayBook BlackBerry 2.0 update from Research in Motion

Research in Motion confirms BlackBerry PlayBook 2.0 software update available

Fujitsu Primergy TX120 S3 review - tower

Fujitsu Primergy TX120 S3 review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

97%

1%

1%

0%

1%

Features

V3 reporter Dan Worth

World-changing CERN experiments highlight humanity’s intrinsic curiosity

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

Software Design Architect (Windows Database Application)

Software Design Architect (Windows Database Application...

Lead Java Developer - Mobile- Digital- Amsterdam

Lead Java Developer - Fast growing, young and international...

Graduate Software Support Engineer

Job Specification Graduate Support Engineer...

c# or asp.net Software Developer

Job Specification For: Software Developer...

To send to more than one email address, simply separate each address with a comma.