Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 21 Mar 2003 14:10:17 +0300
From:      "Nickolay A. Kritsky" <nkritsky@internethelp.ru>
To:        freebsd-security@FreeBSD.ORG
Subject:   (OT) Sendmail exploit?
Message-ID:  <103856076392.20030321141017@internethelp.ru>

next in thread | raw e-mail | index | archive | help
   Hi, freebds-security.

  Sorry for possible off-topic.
  Today I have found something new in my daily.local mail:

;-----------Clipboard starts here-------------------------------
Checking for rejected mail hosts:
   3
  <ltwypslknyyzztzxgyfsgvfulzmaivcjqgiwedpjiulpzeuvelsckuukfbwzuozcghnyrteaembsafxsmtqgybottylczcbmdcqdxbzjhwquhwfgqznjgknloeetiieowywjhnoezpqrwlyjsitsdmjxhwmyeqlrmnnulmhbtyzztvphjexprxomuagfquflvmulnjhmgycsvfxpafknkfkgzgztuabzhxzqzllsfiyqwkvhqfwzizve
;-----------Clipboard ends here---------------------------------

And 7 another similiar (but not identical) strings.

This looks like some kind of attack to me. Does anybody know about
such attempts? I was thinking that new sendmail vuln is exploited w/
strings like '<><><><><><>'. Sendmail is patched, all systems are
(apparently) working fine, just curious.

;-------------------------------------------
; NKritsky
; mailto:nkritsky@internethelp.ru



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?103856076392.20030321141017>