[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Misuse/Abuse

Am 13.10.20 um 16:00 schrieb Daniel Leidert:

Am Dienstag, den 13.10.2020, 08:51 +0200 schrieb Knieling, Christian (IANM):
To whom this may concern,

I got a system message from my mailer daemon lately. It contains

-------------------------------- cut --------------------------------
Message 1kS01n-0008Kv-Nb has been frozen (delivery error message).
The sender is <>.

The following address(es) have yet to be delivered:

Too many "Received" headers - suspected mail loop
-------------------------------- cut --------------------------------
I don't know if this messages reaches the right persons, but someone may
forward it. You may at least remove the files which are accessible on
Clearly someone tries to run a command put as an address. Out of curiosity:
Which kind of vulnerability are they trying to use here?

Regards, Daniel


I think some Exim4 exploit, see CVE-2019-10149 [1].


[1] https://security-tracker.debian.org/tracker/CVE-2019-10149

Reply to: