- Created: Friday, 25 July 2014 04:38
- Hits: 2044
Exim contains a flaw in the expansion of arguments to math comparison functions, which can result in the values being doubled.
The end result is that an attacker can perform a local command execution if they are able to perform a look-up using Exim against files that they can edit. In some cases, such as Exim being bundled with cPanel, the local command execution can actually lead to a root compromise as the Exim look-up is being done by the root user.