Possible root vulnerability in Exim internet mailer

According to a posting on the Exim developer mailing list, the Debian package (and potentially others) contains a vulnerability which can be remotely exploited by attackers to gain control of a server. Initial investigations by Sergey Kononenko, administrator of a network penetrated by unknown attackers, apparently via this vulnerability, suggest that the problem may be caused by a bug in the way certain email headers (HeaderX) are processed.

By using crafted emails, the attackers were able to launch a shell and place further files on the server. Because Exim is usually set to SUID root, by using additional techniques the attackers were able to obtain root privileges.

Read more at H-online

Comments are closed.