On Thu, Dec 09, 2010 at 11:19:22PM -0800, James E. Blair wrote: > On 12/07/2010 01:59 PM, Sergey Kononenko wrote: > > Hi, > > > > While investigating security break in the network of my company, I've > > captured (by tcpdump) sequence of successful remote root attack through > > Exim. It was Exim from Debian Lenny (exim4-daemon-light 4.69-9). > > Paul Fisher and I have successfully run the exploit against a copy of > Exim running in a debugger on debian lenny, and we believe it utilizes > this bug: > > http://bugs.exim.org/show_bug.cgi?id=787 > > It was fixed in 4.70, but not in the version currently in debian > stable.
This has now been fixed in Debian stable. Dominic. -- Dominic Hargreaves | http://www.larted.org.uk/~dom/ PGP key 5178E2A5 from the.earth.li (keyserver,web,email) -- ## List details at http://lists.exim.org/mailman/listinfo/exim-dev Exim details at http://www.exim.org/ ##
