Exim With Dovecot Misconfiguration Remote Command Execution Vulnerability
Schweregrad:: Kritisch
Hinweisdatum: 21 Juli 2015
Beschreibung
Dovecot, when configured with Exim as a local delivery agent, contains a flaw that is due to the program failing to properly sanitize input in the 'sender_address' parameter, which is supplied via a 'MAIL FROM' header. This may allow a remote attacker to execute arbitrary commands.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1005495