Re: [exim] CVE-2019-10149: already vulnerable ?

Startseite
Nachricht löschen
Nachricht beantworten
Autor: Jasen Betts
Datum:  
To: exim-users
Betreff: Re: [exim] CVE-2019-10149: already vulnerable ?
On 2019-07-03, Marc Haber via Exim-users <exim-users@???> wrote:
> On Sun, 23 Jun 2019 20:02:33 +0100, Jeremy Harris via Exim-users
><exim-users@???> wrote:
>>  deny  local_parts = \N ^.*$ : ^.*\\x24 : ^.*\\0?44 \N
>>        message = no mate

>
> This might be a really stupid question, but what exactly does that do?
>
> ^.*$ blocks local_parts containing a $


It looks to me like it matches any string, it should probably be ^.*\$
which would match any astring contailnin literal '$'

> ^.\\x24 does the same?


matches containing literal '\x24'

> but I'm stymied about the \\0.44 notation, what's that?


assuming typo: \\0?44 matches strings containing literal '\044' and '\44'

--
When I tried casting out nines I made a hash of it.