[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [lez@sch.bme.hu: Re: [SECURITY] [DSA-058-1] exim printf format attack]



On Tue, Jun 12, 2001 at 11:51:13AM +0200, Wichert Akkerman wrote:
> Can someone update the webpages to note that it is indeed not
> remotely vulnerable? 
> 
> ----- Forwarded message from Megyer Laszlo <lez@sch.bme.hu> -----
> 
> > Package        : exim
> > Problem type   : remote printf format attack
> > Debian-specific: no
> 
> You are absolutely kind, but it's NOT a remote vulnerability. It's only
> exploitable locally with the -bS switch. (It's in batched smtp mode)

Done.

-- 
Digital Electronic Being Intended for Assassination and Nullification



Reply to: