4 matches found
Sendmail < 8.12.8 Double Pipe smrsh Bypass Overflow
Binary data 2039.prm...
Sendmail 8.8.8 - 8.12.7 Multiple Vulnerabilities (Bypass, OF)
smrsh supplied by Sendmail is designed to prevent the execution of commands outside of the restricted environment. However, when commands are entered using either double pipes || or a mixture of dot and slash characters, a user may be able to bypass the checks performed by smrsh. This can lead to...
iDEFENSE Security Advisory 10.01.02: Sendmail smrsh bypass vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.01.02 Sendmail smrsh bypass vulnerabilities DESCRIPTION It is possible for an attacker to bypass the restrictions imposed by The Sendmail Consortium’s Restricted Shell SMRSH and execute a binary of his choosing by inserti...
idefense.smrsh.txt
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDEFENSE Security Advisory 10.01.02 Sendmail smrsh bypass vulnerabilities DESCRIPTION It is possible for an attacker to bypass the restrictions imposed by The Sendmail Consortiums Restricted Shell SMRSH and execute a binary of his choosing by inserti...