Sun, 10 Jan 2010

2:58 PM - Sendmail 8.14.4 in mports

A vulnerability has been reported in Sendmail, which can be exploited
by malicious people to conduct spoofing attacks.

The vulnerability is caused due to an error when processing
certificate fields containing NULL characters. This can be
exploited to e.g. conduct Man-in-the-Middle (MitM) attacks via
specially crafted certificates.

0 comments