Re: [exim] CVE-2019-10149: already vulnerable ?

Página Inicial
Delete this message
Reply to this message
Autor: Jasen Betts
Data:  
Para: exim-users
Assunto: Re: [exim] CVE-2019-10149: already vulnerable ?
On 2019-07-03, Marc Haber via Exim-users <exim-users@???> wrote:
> On Sun, 23 Jun 2019 20:02:33 +0100, Jeremy Harris via Exim-users
><exim-users@???> wrote:
>>  deny  local_parts = \N ^.*$ : ^.*\\x24 : ^.*\\0?44 \N
>>        message = no mate

>
> This might be a really stupid question, but what exactly does that do?
>
> ^.*$ blocks local_parts containing a $


It looks to me like it matches any string, it should probably be ^.*\$
which would match any astring contailnin literal '$'

> ^.\\x24 does the same?


matches containing literal '\x24'

> but I'm stymied about the \\0.44 notation, what's that?


assuming typo: \\0?44 matches strings containing literal '\044' and '\44'

--
When I tried casting out nines I made a hash of it.