There's a vulnerability in Sendmail that allows remote attacks by buffer-overflow. The security hole could be used for denial of service attacks against e-mail routing infrastructure.

This is just the latest problem with Sendmail, which has had other similar vulnerabilities (this is the third this year).

But you never hear about sendmail attacks in the press, now do you? And the patch for the problem was ready for deployment within 5 days of the bug being reported on the Full-Disclosure list.