Sendmail custom configuration file

The remote sendmail server, according to its version number, may be vulnerable to a 'Mail System Compromise' when a user supplies a custom configuration file. Although the mail server is suppose to run as a lambda user, a programming error allows the local attacker to regain the extra dropped privileges and run commands as root.
upgrade to the latest version of Sendmail Note : This vulnerability is _local_ only