SearchSecurity: Public Exploit Available for Sendmail Flaw
Mar 06, 2003, 22:00 (10 Talkback[s])
(Other stories by Edward Hurley)
Desktop-as-a-Service Designed for Any Cloud ? Nutanix Frame
[ Thanks to Michael
S. Mimoso for this link. ]
"Hours after a serious flaw in Sendmail was announced, a Polish
security group has released an exploit that could take advantage of
the flaw on systems running certain Linux distributions.
"The Last Stage of Delirium (LSD) Research Group, an independent
network security group, established by four Polish computer science
students, posted code and analysis on the BugTraq Web site
detailing a way it was able to exploit the hole. The group noted
its exploit only affected machines running the Slackware Linux
'The exploitation of this vulnerability was quite difficult,'
LSD said in an e-mail interview this morning. 'For sure it required
technical knowledge about operating system internals and
vulnerability exploitation tricks...'"