RPMMail Local/Remote Root Vulnerability

RPMMail Local/Remote Root Vulnerability

By sending a carefully-formed mail message to the affected mail host's 'rpmmail' account, an attacker may be able to obtain a root shell, or to run arbitrary commands as 'nobody' or another unprivileged user.