Detections
Analytics

Debian DSA-097-1 : exim - Uncontrolled program execution

high Nessus Plugin ID 14934

Synopsis

The remote Debian host is missing a security-related update.

Description

Patrice Fournier discovered a bug in all versions of Exim older than Exim 3.34 and Exim 3.952.

The Exim maintainer, Philip Hazel, writes about this issue: 'The problem exists only in the case of a run time configuration which directs or routes an address to a pipe transport without checking the local part of the address in any way. This does not apply, for example, to pipes run from alias or forward files, because the local part is checked to ensure that it is the name of an alias or of a local user. The bug's effect is that, instead of obeying the correct pipe command, a broken Exim runs the command encoded in the local part of the address.'

Solution

This problem has been fixed in Exim version 3.12-10.2 for the stable distribution Debian GNU/Linux 2.2 and 3.33-1.1 for the testing and unstable distribution. We recommend that you upgrade your exim package.

See Also

http://www.exim.org/pipermail/exim-announce/2001q4/000048.html

http://www.debian.org/security/2002/dsa-097

Plugin Details

Severity: High

ID: 14934

File Name: debian_DSA-097.nasl

Version: 1.17

Type: local

Agent: unix

Published: 9/29/2004

Updated: 1/4/2021

Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus

Vulnerability Information

CPE: p-cpe:/a:debian:debian_linux:exim, cpe:/o:debian:debian_linux:2.2

Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l

Patch Publication Date: 1/3/2002

Vulnerability Publication Date: 2/13/2002

Reference Information

DSA: 097