Exim ALT_CONFIG_ROOT_ONLY 'exim' User Local Privilege Escalation Vulnerability

Exim ALT_CONFIG_ROOT_ONLY 'exim' User Local Privilege Escalation Vulnerability

References:

[exim-dev] Remote root vulnerability in Exim (Sergey Kononenko)
Critical: Exim security update (CVE-2010-4345) (cPanel)
Exim Homepage (Exim)
Exim remote root (Mark J Cox)
Exim4 bug (HD Moore)
Re: [exim-dev] [Exim-maintainers] Remote root vulnerability in Exim (David Woodhouse)
Re: [exim-dev] Remote root vulnerability in Exim (David Woodhouse)
Exim security issue in historical release (nigel@exim.org)
Avaya Security Advisory ASA-2011-016 (Avaya)
VU#758489 Exim alternate configuration privilege escalation vulnerability (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus