Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

Gentoo: 200404-18 High: SSMTP Format String Exploit Risk

gentoo
Calendar Grey April 26, 2004
Dist Gentoo Esm H88
A series of formatting vulnerabilities in the SSMTP software could enable malicious users to run arbitrary commands with root access.
There are multiple format string vulnerabilities in the SSMTP package, which may allow an attacker to run arbitrary code with ssmtp's privileges (potentially root)

Summary

Gentoo Linux Security Advisory GLSA 200404-18 https://security.gentoo.org/ Severity: High Title: Multiple Vulnerabilities in ssmtp Date: April 26, 2004 Bugs: #47918, #48435 ID: 200404-18

Synopsis ======= There are multiple format string vulnerabilities in the SSMTP package, which may allow an attacker to run arbitrary code with ssmtp's privileges (potentially root).
Background ========= SSMTP is a very simple mail transfer agent (MTA) that relays mail from the local machine to another SMTP host. It is not designed to function as a full mail server; its sole purpose is to relay mail.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 net-mail/ssmtp <= 2.60.4-r2 >= 2.60.7
========== There are two f...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory high severity gentoo code execution format string arbitrary code ssmtp

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory high severity gentoo code execution format string arbitrary code ssmtp

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Related News

Your message here