Re: [exim] CVE-2019-15846: Exim - local or remote attacker c…

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
M\Jan Ingvoldstad at <-
MMPhillip Carroll at ->
Delete this message
Reply to this message
Author: Marco Gaiarin
Date:  
To: Dmitriy Matrosov via Exim-users
CC: exim-users
Subject: Re: [exim] CVE-2019-15846: Exim - local or remote attacker can execute programs with root privileges.
Mandi! Dmitriy Matrosov via Exim-users
In chel di` si favelave...

> (Debian 6, 4.72, no $tls_sni, no $tls_in_sni)

4.72 is not vulnerable, as Heiko say in: 

    https://www.bleepingcomputer.com/news/security/critical-exim-tls-flaw-lets-attackers-remotely-execute-commands-as-root/


-- 
  Tutti siamo hacker. Essere hacker significa cambiare l'uso di qualcosa
  nato per fare altro, allo scopo di ottenerne soddisfazione personale.
  In sostanza la masturbazione.        (Kevin on <empty>, 10/05/2007)




This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[exim] no EHLO after STARTTLS (was: CVE-2019-15846: Exim - local or remote attacker can execute programs with root privileges)Re: [exim] Malformed messages - demime - deprecated - use acl_smtp_mime->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)