> Does anyone know what the hole is and how to test for it?
> As usual, I have uploaded the CERT advisory and it tells me
> nothing about how to test for it or what it is (other than a
> newline in the address field causing problems).
> I would very much like to be able to add a test for it to
> our test set. - FC
Is it really profitable to check for a specific hole in sendmail?
Check version number may be ok, but why bother? sendmail is the
hole, isn't it :-( ?
Don't think CERT wants to publish ways to test for the hole. Know
I don't want them to.
/// Martin F