Vulnerabilities > CVE-2001-0889

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
university-of-cambridge
redhat

Summary

Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.

Vulnerable Configurations

Part Description Count
Application
University_Of_Cambridge
1
OS
Redhat
1

Redhat

advisories
rhsa
idRHSA-2001:176