Detections
Analytics

Mandrake Linux Security Advisory : sendmail (MDKSA-2002:083)

medium Nessus Plugin ID 13981

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

A vulnerability was discovered by zen-parse and Pedram Amini in the sendmail MTA. They found two ways to exploit smrsh, an application intended as a replacement for the sh shell for use with sendmail; the first by inserting specially formatted commands in the ~/.forward file and secondly by calling smrsh directly with special options. These can be exploited to give users with no shell account, or those not permitted to execute certain programs or commands, the ability to bypass these restrictions.

Solution

Update the affected packages.

See Also

http://www.sendmail.org/smrsh.adv.txt

Plugin Details

Severity: Medium

ID: 13981

File Name: mandrake_MDKSA-2002-083.nasl

Version: 1.18

Type: local

Published: 7/31/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.1

CVSS v2

Risk Factor: Medium

Base Score: 4.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:sendmail, p-cpe:/a:mandriva:linux:sendmail-cf, p-cpe:/a:mandriva:linux:sendmail-devel, p-cpe:/a:mandriva:linux:sendmail-doc, cpe:/o:mandrakesoft:mandrake_linux:7.2, cpe:/o:mandrakesoft:mandrake_linux:8.0, cpe:/o:mandrakesoft:mandrake_linux:8.1, cpe:/o:mandrakesoft:mandrake_linux:8.2, cpe:/o:mandrakesoft:mandrake_linux:9.0

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 11/28/2002

Reference Information

CVE: CVE-2002-1165

MDKSA: 2002:083