Re: [exim-dev] [Bug 2118] sendmail -be and ${run} macro security problem

Andrew C Aitchison Tue, 09 May 2017 03:16:11 -0700

On Tue, 9 May 2017, [email protected] wrote:

https://bugs.exim.org/show_bug.cgi?id=2118


Jasen Betts <[email protected]> changed:

          What    |Removed                     |Added
----------------------------------------------------------------------------
                CC|                            |[email protected]

--- Comment #7 from Jasen Betts <[email protected]> ---
It looks to me like a "shell injection" flaw in wordpress.


Yes, but exim provides a language for the hacker to
modify the command after wordpress has sanitised it :-(

--
Andrew C Aitchison                      Cambridge, UK

--
## List details at https://lists.exim.org/mailman/listinfo/exim-dev Exim 
details at http://www.exim.org/ ##

Re: [exim-dev] [Bug 2118] sendmail -be and ${run} macro security problem

Reply via email to