Hola
Primero tengo adsl 256k , blackice , y estoy usando el emule
win 2K pro
Se produjo un el siguiente ataque
2001906 : Ident buffer overflow allows remote users to execute commands
High Risk
Quick Links
Event Description
Products that have this security check
Affected platforms
How to remove this vulnerability
References
Information about this document
Event description
Sendmail is a Mail Transport Agent (MTA) used on many Unix-based operating systems. Sendmail version 8.6.9 connects back to the ident service to log user information. This version of Sendmail does not validate the information returned by the client. If the response by the client to Sendmail is longer than expected, the response overflows the buffer. This condition could allow a remote attacker to execute commands on the host system and gain privileged access to the system.
Products that have this security check
A Series
BlackICE Agent for Server
BlackICE PC Protection
BlackICE Server Protection
G Series
M Series
RealSecure Desktop Protector
RealSecure Guard
RealSecure Network Sensor
RealSecure Sentry
RealSecure Server Sensor
Ident_Overflow
This signature detects when an Ident response contains more than 128 characters.
Affected platforms
ConvexOS (Any version)
DG/UX (Any version)
HP Apollo Domain/OS 10.3
HP-UX (Any version)
IRIX (Any version)
Linux (Any version)
NeXTSTEP (Any version)
SCO Unix (Any version)
Sendmail (Any version)
Solaris (Any version)
UNICOS (Any version)
Ultrix (Any version)
lftpd (Any version)
How to remove this vulnerability
Upgrade to the latest version of Sendmail (8.11.2 or later), available from the Sendmail Web site. See References.
Por lo visto no me afecta (Plataforma)
Ademas yo no tengo instalado sendmail
Añado que el blakice me sale esto como parametro
command=.KL.D......$).Oa$o_P.1.q.....dont...<...@
[email protected]......>.5....F.sS#.......4.p..+Y/Stanley_Kubrick_-_The_,
Que es lo que paso , si alguien me lo puede explicar?
