Hi,
does grsecurity protects against exploiting latest sendmail vulnerability?
http://xforce.iss.net/xforce/alerts/id/216
If yes, then what options should be turned on?
Regards.
grsecurity and latest sendmail vulnerability
3 posts
• Page 1 of 1
grsecurity and latest sendmail vulnerability
by marcin_1 » Fri Mar 24, 2006 5:20 am
- marcin_1
- Posts: 8
- Joined: Tue Dec 17, 2002 12:10 pm
Re: grsecurity and latest sendmail vulnerability
by PaX Team » Sun Mar 26, 2006 11:28 am
it always depends on the exploit technique used and the answer is always the same: runtime code generation based exploits cannot work, the rest may (with or without having to guess randomization, depending on the nature of the bug, info leaking, whatnot).marcin_1 wrote:Hi,
does grsecurity protects against exploiting latest sendmail vulnerability?
http://xforce.iss.net/xforce/alerts/id/216
If yes, then what options should be turned on?
- PaX Team
- Posts: 2310
- Joined: Mon Mar 18, 2002 4:35 pm
by Platyna » Wed Mar 29, 2006 9:58 am
Here is a document about how to check if you are vulnerable:
http://rapturesecurity.org/jack/exploit ... dmail.html
However I would simply recommend you upgrade to newest version.
Regards.
http://rapturesecurity.org/jack/exploit ... dmail.html
However I would simply recommend you upgrade to newest version.
Regards.
- Platyna
- Posts: 17
- Joined: Fri Jul 29, 2005 5:04 pm
3 posts
• Page 1 of 1