Here's a followup on the security hole in C-NEWS and older versions
of INN. Supposedly a "fully patched" INN fixes the problem.
I dunno about C-NEWS.
Selden
===========
>From: IN%"shipley@merde.dis.org" "Evil Pete" 24-FEB-1994 06:52:32.79
>To: IN%"scott@santafe.edu"
>CC: IN%"an46153@anon.penet.fi", IN%"bugtraq@crimelab.com"
>Subj: RE: Security problem in C news and INN
>
>Return-path: <bugtraq-owner@crimelab.crimelab.com>
>Received: from crimelab.crimelab.COM by LNS62.LNS.CORNELL.EDU (PMDF V4.2-13
> #3448) id <01H996J9CF0G8WYUQ0@LNS62.LNS.CORNELL.EDU>; Thu,
> 24 Feb 1994 06:52:26 EST
>Received: from localhost (root@localhost) by crimelab.crimelab.com
> (8.6.4/8.6.4) id FAA11932 for bugtraq-outgoing; Thu, 24 Feb 1994 05:12:43 -0600
>Received: from soda.berkeley.edu (soda.Berkeley.EDU [128.32.149.19]) by
> crimelab.crimelab.com (8.6.4/8.6.4) with ESMTP id FAA11926 for
> <bugtraq@crimelab.com>; Thu, 24 Feb 1994 05:12:35 -0600
>Received: from merde.dis.org (uucp@localhost) by soda.berkeley.edu
> (8.6.5/PHILMAIL-1.10) with UUCP id CAA19578; Thu, 24 Feb 1994 02:54:39 -0800
>Received: from localhost.Berkeley.EDU by merde.dis.org (4.1/SMI-4.2) id
> AA06845; Thu, 24 Feb 94 02:53:34 PST
>Date: Thu, 24 Feb 1994 02:53:32 -0800
>From: Evil Pete <shipley@merde.dis.org>
>Subject: RE: Security problem in C news and INN
>In-reply-to: Your message of Wed,
> 23 Feb 1994 20:56:51 -0700. <9402240356.AA23936@sfi.santafe.edu>
>Sender: bugtraq-owner@crimelab.crimelab.com
>To: scott@santafe.edu (Scott D. Yelich)
>Cc: an46153@anon.penet.fi, bugtraq@crimelab.com
>Message-id: <9402241053.AA06845@merde.dis.org>
>Content-id: <6842.762087212.1@merde.dis.org>
>MIME-version: 1.0
>Content-type: text/plain; charset="us-ascii"
>Content-transfer-encoding: 7BIT
>Phone: (510) 849-2230
>Snail-Address: 2560 Bancroft way #51;Berkeley CA 94704-1700
>Precedence: bulk
>
>>so, give details.
>>
>>Scott
>
>
>there are shell scripts in Cnews and INN that pass the message to
>ucbMail, where one can do ~ escapes.
>
>
> -Pete
>