Critical Vulnerability in Sendmail

Sendmail is one of the most popular mail transfer agents (MTA) on the Internet. Most, if not all, emails end up going through a Sendmail server at some point on their journey. Sendmail is an open source application which is bundled with almost every version of Unix and Linux. A critical vulnerability has been discovered in Sendmail which would allow an attacker to execute programs on the target machine with the same privileges as Sendmail- typically root access. For more detailed information you can see this CERT Advisory: CA-2003-25 Buffer Overflow in Sendmail. It is important if you have Sendmail enabled on your machine that you review this CERT Advisory and take the appropriate actions to patch or update your Sendmail to repair the vulnerability.