[PLUG] new guy with questions
Charlie Schluting
charlie at schluting.com
Thu Jul 6 17:30:21 UTC 2006
Dan Young wrote:
>
> CVE-2005-0337 was a bug in a 3rd-party IPv6 patch.
> Please read the Redhat report:
> http://rhn.redhat.com/errata/RHSA-2005-152.html
> Or from Wietse on Bugtraq, if you prefer:
> http://seclists.org/lists/bugtraq/2005/Feb/0070.html
>
> CVE-2003-0540 is 35 months old, so not three years old for all of the
> pedants out there. Thanks for clarifying that. It was a DoS, not
> remote code execution, like the most recent Sendmail bug
> (CVE-2006-0058).
>
Exactly. Yet some people will maintain that Sendmail is just as secure.
It boggles the mind, really.
-Charlie
More information about the PLUG
mailing list