Exim Pipe Hostname Arbitrary Command Execution Vulnerability

Bugtraq ID: 3728
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Dec 19 2001 12:00AM
Updated: Dec 19 2001 12:00AM
Credit: This vulnerability was originally discovered by Patrice Fournier, and announced by Philip Hazel <ph10@cus.cam.ac.uk> via the exim-users and exim-announce mailing lists on December 19, 2001.
Vulnerable: University of Cambridge Exim 3.33
University of Cambridge Exim 3.32
University of Cambridge Exim 3.31
University of Cambridge Exim 3.30
University of Cambridge Exim 3.22
- Redhat PowerTools 7.1
University of Cambridge Exim 3.21
University of Cambridge Exim 3.20
University of Cambridge Exim 3.19
- Redhat PowerTools 7.0
University of Cambridge Exim 3.18
University of Cambridge Exim 3.17
University of Cambridge Exim 3.16
University of Cambridge Exim 3.15
University of Cambridge Exim 3.14
University of Cambridge Exim 3.13
- Redhat PowerTools 6.2
University of Cambridge Exim 3.12
+ Debian Linux 2.2 sparc
+ Debian Linux 2.2 powerpc
+ Debian Linux 2.2 IA-32
+ Debian Linux 2.2 arm
+ Debian Linux 2.2 alpha
+ Debian Linux 2.2 68k
University of Cambridge Exim 3.11
Not Vulnerable: University of Cambridge Exim 3.952
University of Cambridge Exim 3.34


 

Privacy Statement
Copyright 2010, SecurityFocus