-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 doesnt look remote to me since you need to upload the malicious .forward file in the home, much a local bug allowing remote exec rather than a remote bug.
kcope wrote: > Look, it's the Sendmail/postfix the Storybook > > > ---------------------------------------------------------------------- > > > ---------------------------------------------------------------------- > > > ---------------------------------------------------------------------- > > _______________________________________________ > Full-Disclosure - We believe in it. > Charter: http://lists.grok.org.uk/full-disclosure-charter.html > Hosted and sponsored by Secunia - http://secunia.com/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.7 (MingW32) iD8DBQFHY8IAdS4H/t4eKFARAsMAAJ9eK1VZi+aPl9/TGKLH6f84Fp6cTQCaA+2Q DeBhMmyBjKcxmsKVHBtbVCE= =9AoX -----END PGP SIGNATURE----- _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
