[CentOS] Update of CentOS 4.0 to 4.3 be serious
Les Mikesell
lesmikesell at gmail.com
Wed Apr 12 18:54:52 UTC 2006
On Wed, 2006-04-12 at 12:29, Mike Stankovic wrote:
> The recent sendmail security
> update allows a remote root exploit !!
*If* sendmail is running as root and you can time your
exploit to hit while it is executing a setjmp() instruction
which sounds kind of theoretical to me. But your point
about staying current with updates is absolutely correct.
--
Les Mikesell
lesmikesell at gmail.com
More information about the CentOS
mailing list