On 04-Dec-2002 at 11:28:23 Philip Hazel wrote:
> A minor security bug has been found in Exim which applies to both Exim 3
> and Exim 4.
>
> It is a minor bug because it can be exploited only by a local Exim admin
> user. Such users are normally sysadmins who have root on the machine
> anyway. In order to exploit the bug, you have to
>
> (a) Change Exim's configuration file by setting the pid_file_path
> option. This requires write access to the file, or the use of
> -C by someone running as root or exim.
>
Could this problem also exist if pid_file_path is set (with %s) in the
Makefile used to build exim (although the option itself may not be specified
in the configure file)? If so, then perhaps the exploit could exist without
the need to change the configure file or restart exim?
Regards,
John.
------------------------------------------------------------------------
John Horne, University of Plymouth, UK Tel: +44 (0)1752 233914
E-mail: jhorne@???
PGP key available from public key servers
