Family: SMTP problems --> Category: infos
Sendmail Forward File Privilege Escalation Vulnerability Vulnerability Scan
Vulnerability Scan Summary
Checks the version number
Detailed Explanation for this Vulnerability Test
The remote sendmail server, according to its version number,
may be vulnerable to a local privilege escalation vulnerability
when using forward files.
*** Sun did not increase the version number of their sendmail
*** when patching Solaris 7 and 8, so this might be a false
*** positive on these platforms.
A possible hacker may set up a special .forward file in his
home and send a mail to himself, which will trick sendmail
and will allow him to execute arbitrary commands with
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.