Sun Sendmail Forward File Privilege Escalation Vulnerability

info
discussion
exploit
solution
references

Sun Sendmail Forward File Privilege Escalation Vulnerability

Sun has announced a vulnerability in Sendmail. The problem occurs due to insufficient handling of certain properties of a user's '.forward' file.

This issue could likely be exploited by an attacker to elevate privileges to that of the Sendmail daemon, typically root.

The technical details regarding this vulnerability are currently unknown. This BID will be updated as more information is made available.