Re: [exim-dev] Remote root vulnerability in Exim

Top Pagina
Deze boodschap maakt deel uit van devolgende draad:
Mde volledige draad-boom gesorteerd op datum
MMTed Cooper op <-
MMMDavid Woodhouse op ->
Delete this message
Reply to this message
Auteur: Dominic Hargreaves
Datum:  
Aan: James E. Blair
CC: exim-dev, pkg-exim4-maintainers, Sergey Kononenko, Paul Fisher
Onderwerp: Re: [exim-dev] Remote root vulnerability in Exim
On Thu, Dec 09, 2010 at 11:19:22PM -0800, James E. Blair wrote:
> On 12/07/2010 01:59 PM, Sergey Kononenko wrote:
> > Hi,
> >
> > While investigating security break in the network of my company, I've
> > captured (by tcpdump) sequence of successful remote root attack through
> > Exim. It was Exim from Debian Lenny (exim4-daemon-light 4.69-9).
>
> Paul Fisher and I have successfully run the exploit against a copy of
> Exim running in a debugger on debian lenny, and we believe it utilizes
> this bug:
>
> http://bugs.exim.org/show_bug.cgi?id=787
>
> It was fixed in 4.70, but not in the version currently in debian
> stable.

This has now been fixed in Debian stable.

Dominic.

--
Dominic Hargreaves | http://www.larted.org.uk/~dom/
PGP key 5178E2A5 from the.earth.li (keyserver,web,email)

Deze boodschap werd naar devolgende mailinglijsten gestuurd:
Exim-dev
Mailing Lijst Info | Nabije Berichten		<-[exim-dev] [Bug 1044] CVE-2010-4345 exim privilege escalationRe: [exim-dev] Remote root vulnerability in Exim->
Tahini and Hummus and Cumin Development Archives beheerd door cumin AdminsLurker (versie 2.3)