AI Score
Confidence
High
EPSS
Percentile
88.6%
Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.
marc.info/?l=bugtraq&m=100877978506387&w=2
www.debian.org/security/2002/dsa-097
www.kb.cert.org/vuls/id/283723
www.redhat.com/support/errata/RHSA-2001-176.html
www.securityfocus.com/bid/3728
exchange.xforce.ibmcloud.com/vulnerabilities/7738