Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2006:017: sendmail Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the sendmail package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2006:017 (sendmail).
The popular MTA sendmail is vulnerable to a race condition when handling
Under certain circumstances this bug can be exploited by a possible hacker to
execute commands remotely.
Sendmail was the default MTA in SuSE Linux Enterprise Server 8. Later
products use postfix as MTA.
Thanks to Mark Dowd who found this bug.
Solution : http://www.suse.de/security/advisories/2006_17_sendmail.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.