Discover Server Security News
Is a Sendmail worm likely?
Conservative estimates say that Sendmail, an open-source mail transport engine, handles between 50% to 75% of all Internet e-mail traffic. Most versions of the application, which can run on Unix, Linux and Windows, are susceptible to the buffer overflow vulnerability.
An attacker could exploit the flaw in a targeted way by sending an e-mail message with a specially crafted header. The buffer is static, so if an attacker sends a certain size chunk of data, then some would spill over and run on the affected system.
The link for this article located at Search Security is no longer available.