Re: [lez@sch.bme.hu: Re: [SECURITY] [DSA-058-1] exim printf format attack]
On Tue, Jun 12, 2001 at 11:51:13AM +0200, Wichert Akkerman wrote:
> Can someone update the webpages to note that it is indeed not
> remotely vulnerable?
>
> ----- Forwarded message from Megyer Laszlo <lez@sch.bme.hu> -----
>
> > Package : exim
> > Problem type : remote printf format attack
> > Debian-specific: no
>
> You are absolutely kind, but it's NOT a remote vulnerability. It's only
> exploitable locally with the -bS switch. (It's in batched smtp mode)
Done.
--
Digital Electronic Being Intended for Assassination and Nullification
Reply to: