OSVDB: Open Sourced Vulnerability Database

Browse Database

Browsing Vulnerabilities Disclosed in September of 1984

	OSVDB ID	Disclosure Date	Title
	15726 [CLOSE] OSVDB ID : 15726 - Disclosed: 1984-09-12 Description: Sendmail contains a flaw that may allow a local attacker to access privileged files. The issue occured when calling sendmail with the -C option (alternate configuration file). By specifying an arbitrary system file with restricted permissions, sendmail would complain that the file was not a valid configuration file and display the contents to standard outpout. This could be used to read the contents of /etc/shadow or other sensitive files.	1984-09-12	Sendmail -C Arbitrary Privilege File Disclosure

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.