[CentOS] Update of CentOS 4.0 to 4.3 be serious

Les Mikesell lesmikesell at gmail.com
Wed Apr 12 18:54:52 UTC 2006


On Wed, 2006-04-12 at 12:29, Mike Stankovic wrote:

> The recent sendmail security
> update allows a remote root exploit !!

*If* sendmail is running as root and you can time your
exploit to hit while it is executing a setjmp() instruction
which sounds kind of theoretical to me.  But your point
about staying current with updates is absolutely correct.

-- 
  Les Mikesell
   lesmikesell at gmail.com





More information about the CentOS mailing list