Re: [exim] Exim with Dovecot: Typical Misconfiguration Leads…

Αρχική Σελίδα
Delete this message
Reply to this message
Συντάκτης: Lena
Ημερομηνία:  
Προς: exim-users
Αντικείμενο: Re: [exim] Exim with Dovecot: Typical Misconfiguration Leads to Remote Command Execution
> the default configuration's RCPT ACL would reject an
> inbound email address containing backticks as being invalid.


Default RCPT ACL checks local_parts, but in the exploit
$sender_address_local_part (in envelope-from) was used.