Sendmail < 8.14.9 close-on-exec SMTP Connection Manipulation
Low Nessus Plugin ID 74289
SynopsisThe remote mail server is affected by an SMTP connection manipulation vulnerability.
DescriptionThe remote mail server is running a version of Sendmail prior to 8.14.9. It is, therefore, affected by a flaw related to file descriptors and the 'close-on-exec' flag that may allow a local attacker to cause unspecified impact on open SMTP connections.
SolutionUpgrade to Sendmail 8.14.9 or later.