Re: Linux imapd remote vunerability.

Alex Nobert (alexn@UACT.NET)
Wed, 25 Jun 1997 13:08:26 -0400

On Wed, 25 Jun 1997, inter wrote:

> I was waiting for something like this, typical bufferoverflow I am not
> sure however if it exists in slackware, (most slackware boxes I have seen
> dont even have imapd running default). Anyhow, RedHat 4.1 and under are
> exploitable. Just kill imapd no real point in running
> it anyhow.

That bug was fixed in RedHat 4.1.. imap4rev1 and up are fixed.

+-Alex Nobert----+-Unix SysAdmin (Linux/Solaris)----------------------+
| alexn@uact.net | Network/Security Consultant http://www.uact.net |
| an697@internic | Internet Specialist http://alex.ottawa.on.ca |
+----------------+-WebMaster------------------------------------------+