-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

=============================================================================
Sendmail-SA-200607-03                                       Security Advisory
                                                               Sendmail, Inc.

Topic: Flow Control Address Sanitizing Flaw

Class:          Denial of Service, Code execution
Severity:       Critical
Announced:      2006-08-09 09:00 PDT
Affects:        Anti-spam Solution 3.1, 3.2
                Flow Control 1.6.2 and earlier
                Mailstream Content Manager 1.1 with Flow Control
                Mailstream Flow Control 1.6.2 and earlier
                Mailstream Guardian 3.x
                Mailstream Gatekeeper 2.x
                Sendmail Sentrion 1.5.3 and earlier
                SME-J Gateway Server 1.4
Resolved:       Flow Control 1.6.3
                Sendmail Sentrion 1.5.4

For general information regarding Sendmail, Inc. Security Advisories,
including descriptions of the fields above, other security advisories,
and the following sections, please visit <http://www.sendmail.com/security/>.


I. Background

    Sendmail Flow Control Filter, available as a separate product and
    included on all Sentrion appliances, provides the control on SMTP
    traffic most mail system administrators need to protect their network
    and system resources from malicious attacks and unexpected surges of
    mail traffic from specific sites.


II. Problem Description

    Sender and recipient addresses sent to Flow Control are not properly
    sanitized before being interpreted by any policy classes using the
    Senders or Recipients Class parameters.


III. Impact

    An attacker can crash Flow Control, creating a denial of service
    attack, or possibly cause Flow Control to execute code sent by the
    attacker by using specially crafted e-mail addresses.


IV. Workaround

    If you are unable to install the patch immediately, you can work around
    this problem by not using any Senders or Recipients limits in your
    configured Flow Control classes.


V. Solution

    Sendmail, Inc. has released a patch for Flow Control to address this
    problem.  Those patches are available to supported customers on their
    download site at:

      https://www.sendmail.com/customerlogin/

    Unsupported customers can download the patches from:

      ftp://ftp.sendmail.com/unsupported/smflow-patch-1.4.1-Linux.tar.gz
      ftp://ftp.sendmail.com/unsupported/smflow-patch-1.4.1-Solaris8.tar.Z
      ftp://ftp.sendmail.com/unsupported/smflow-patch-1.6.3-Linux.tar.gz
      ftp://ftp.sendmail.com/unsupported/smflow-patch-1.6.3-Solaris8.tar.Z
      ftp://ftp.sendmail.com/unsupported/SentriOS-1.5.4-905.tar

    Refer to the README included with each patch for installation
    instructions.  The checksums for the available patches are:

    MD5 (smflow-patch-1.4.1-Linux.tar.gz) = badbb31d32231bafc6731849f3140425
    MD5 (smflow-patch-1.4.1-Solaris8.tar.Z) = 70b6e381a8b26c5ad2afe3271745dd15
    MD5 (smflow-patch-1.6.3-Linux.tar.gz) = 74c3917b170e6a78f5df50ae175fe70a
    MD5 (smflow-patch-1.6.3-Solaris8.tar.Z) = 38601352ac04a077eeaf98768b0473e6
    MD5 (SentriOS-1.5.4-905.tar) = 20f362750fd58218069984247e6cfac1

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (Darwin)

iD8DBQFE61B6EEMlGKD4qgwRAmv2AKCxQnhBsdmTlrLO13ZLXdNiD/aQNQCeKleE
PGmpT+WlszCIT96OauY92XE=
=Qo9e
-----END PGP SIGNATURE-----