HPE Community
Operating System - HP-UX
1753895 Members
7627 Online
108809 Solutions
New Discussion юеВ

SSRT3631 Potential Security Vulnerability in sendmail Rev 2

 
Berlene Herren
Honored Contributor

тАО10-07-2003 12:53 AM

тАО10-07-2003 12:53 AM

SSRT3631 Potential Security Vulnerability in sendmail Rev 2

A security bulletin revision has been issued:

-----------------------------------------------------------------
**REVISED 02**
Source: HEWLETT-PACKARD COMPANY
SECURITY BULLETIN: HPSBUX0309-281
Originally issued: 21 September 2003
Last revised: 06 October 2003
SSRT3631 Potential Security Vulnerability in sendmail


-----------------------------------------------------------------

To access the bulletin from the itrc:

Select "maintenance and support"
Select "search technical knowledge base"
Select "HP-UX Software Security Bulletins"
Select "Search by Security Bulletin Number"
Enter " HPSBUX0309-281"
Search


===============================================================
This is specific to 11.22

Berlene

http://www.mindspring.com/~bkherren/dobes/index.htm
0 Kudos
Reply
7 REPLIES 7
Jeff Schussele
Honored Contributor

тАО10-07-2003 01:12 AM

тАО10-07-2003 01:12 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

Hi Berlene,

Am I the only one who thinks that if this pace keeps up on Sendmail alerts, I'm going to have to write a cron script to fetch 'em & apply 'em?

Rgds,
Jeff (tongue firmly planted in cheek)

Luckily no Itanium systems.....yet.....
PERSEVERANCE -- Remember, whatever does not kill you only makes you stronger!
0 Kudos
Reply
Geoff Wild
Honored Contributor

тАО10-07-2003 01:16 AM

тАО10-07-2003 01:16 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

Hi Berlene - what happened to your site:

http://www.geocities.com/berlene_herren/

Rgds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
0 Kudos
Reply
Berlene Herren
Honored Contributor

тАО10-07-2003 01:17 AM

тАО10-07-2003 01:17 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

Just trying to keep up with the Jones's :-)

Berlene
http://www.mindspring.com/~bkherren/dobes/index.htm
0 Kudos
Reply
Berlene Herren
Honored Contributor

тАО10-07-2003 01:19 AM

тАО10-07-2003 01:19 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

Geoff, in order to avoid a conflict between a personal site being viewed as somewhat official ( I DO work here ),I have removed it. Most of the links and material I had posted can be found from hp education and doing a google search on hp certification.

Thanks,
Berlene
http://www.mindspring.com/~bkherren/dobes/index.htm
0 Kudos
Reply
Geoff Wild
Honored Contributor

тАО10-07-2003 01:37 AM

тАО10-07-2003 01:37 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

Berlene - that's too bad :(

I even tried to find it in the Internet Archive:

http://www.archive.org/web/web.php

But alas, your site didn't make it to there....

RGds...Geoff
Proverbs 3:5,6 Trust in the Lord with all your heart and lean not on your own understanding; in all your ways acknowledge him, and he will make all your paths straight.
0 Kudos
Reply
Edward Finneran
Advisor

тАО11-20-2003 09:30 AM

тАО11-20-2003 09:30 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

hmmmm...here's a question about HPSBUX0309-281. In the body, for hp-ux 11.0, it specifically states that the vulnerable fileset is SMAIL-811.

So, if we never loaded the 'webupgrade' from the version of sendmail that shipped with HP-UX and has been patched over the years, so we're running 8.9.3, this vulnerability would imply that it doesn't apply to us, since we don't have SMAIL-811.

However, the CERT page for the corresponding advisory says that this vulnerability applies to all versions of sendmail prior to 8.12 -- which would include 8.9.3, which would imply that we ARE vulnerable -- sendmail.org has a patch you can apply to all versions prior to 8.12.0 to fix it.

Which is correct? Are we vulnerable, or not?
0 Kudos
Reply
John Morris
Advisor

тАО11-21-2003 02:20 AM

тАО11-21-2003 02:20 AM

Re: SSRT3631 Potential Security Vulnerability in sendmail Rev 2

There are two vulnerable filesets for B.11.00:

HP-UX B.11.00
=============
SMAIL-811.INETSVCS-SMAIL
--> fix: install HPSecurityBul281b.depot

InternetSrvcs.INETSVCS-RUN
--> fix: install HPSecurityBul281b.depot

The InternetSrvcs.INETSVCS-RUN contains the 8.9.3 version of sendmail.

The HPSecurityBul281b.depot contains the following files:

sendmail.893.11.00.r4
sendmail.811.11.00.r4
sendmail.893.11.11.r4
sendmail.811.11.11.r4
sendmail.811.11.22.r5
sendmail.811.11.23.r1


John Morris
HP SOFTWARE SECURITY RESPONSE TEAM (SSRT)
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.