OSVDB ID: 15901 Title: Sendmail Configuration Freeze .fc File Ownership Issue |
Info |
|
|
Dates |
||||
|
|
Description |
Sendmail contains a flaw that may allow a local attacker to gain privileges. The issue occurs when a user is able to 'freeze' the configuration file without having proper ownership of the .fc file. No further details have been provided. |
Classification |
Location:
Local Access Required
Attack Type: Misconfiguration Impact: Loss of Integrity Exploit: Exploit Unknown Disclosure: OSVDB Verified, Vendor Verified |
Solution |
Upgrade to version 4.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds. |
Products |
|
References |
|
Credit |
Unknown or Incomplete |