Re: [exim] Exim 4.84_2 #1 : WARNING: purging the environment…

Startseite
Diese Nachricht ist Teil des folgenden Threads:
M\Der komplette Thread sortiert nach Datum
MMJeremy Harris am <-
MMAlways Learning am ->
Nachricht löschen
Nachricht beantworten
Autor: Chris Siebenmann
Datum:  
To: Always Learning
CC: Exim, cks
Betreff: Re: [exim] Exim 4.84_2 #1 : WARNING: purging the environment.
> Thank you very much for your helpful summary. Currently I do not
> understand how someone can use Exim to execute malicious Perl scripts
> unless Exim has a facility to execute Perl scripts, for example
> [...]

There's a full-disclosure mailing list message about the bug; it
provides details of how this is exploitable provided only that you have
perl_startup defined in your Exim configuration: 

    https://marc.info/?l=full-disclosure&m=145781499028909&w=2


    - cks


Diese Nachricht wurde auf der folgenden Mailing-List gepostet:
Exim-users
Mailing-List-Info | Nachrichten um die Zeit		<-Re: [exim] Exim 4.84_2 #1 : WARNING: purging the environment.Re: [exim] Exim 4.84_2 #1 : WARNING: purging the environment.->
Tahini and Hummus and Cumin Development Archives administriert von cumin AdminsLurker (Version 2.3)