[exim] someone posted an none working exploit for exim

Inizio della pagina
Questo messaggio è parte di questo thread:
M+\il thread completo ordinato per data
MMM 
MJeremy Harris at ->
Delete this message
Reply to this message
Autore: Cyborg
Data:  
To: Exim-users@exim.org >> \"<exim-users@exim.org>\"
Oggetto: [exim] someone posted an none working exploit for exim

Hi,

someone posted an exploit on packetstorm, which should not work at all (
and does not on an actual exim )

[root@vpn ~]# nc 127.0.0.1 25
220 locahost ESMTP Exim 4.76 Fri, 07 Jun 2013 15:28:45 +0200
HELO localhost
250 localhost Hello localhost [127.0.0.1]
MAIL FROM: x`ls -la >/tmp/test`@???
501 x`ls -la >/tmp/test`@???: missing or malformed local part
(expected word or "<")


Was this a security risk ever, or did they just wanne have theire five
minutes ?

marius

Questo messaggio è stato inviato alle seguenti mailing lists:
Exim-users
Informazioni sulla Mailing List | Messaggi correlati		<-Re: [exim] Spamtrap harvesting idea using fake authenticationRe: [exim] Different retry pattern based on destination or other factor - mailing list distribution->
Tahini and Hummus and Cumin Development Archives amministrato da cumin AdminsLurker (versione 2.3)