sendmail -- race condition vulnerability

ID 08AC7B8B-BB30-11DA-B2FB-000E0C2E438A
Type freebsd
Reporter FreeBSD
Modified 2006-06-09T00:00:00


Problem Description A race condition has been reported to exist in the handling by sendmail of asynchronous signals. Impact A remote attacker may be able to execute arbitrary code with the privileges of the user running sendmail, typically root. Workaround There is no known workaround other than disabling sendmail.