VDB

ANCHORE-2001-0889

ANCHORE-2001-0889 PUBLISHED

Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.

Affected Products

VendorProductVersions
EximExim0, 0, 0

Timeline

  • Jun 25, 2002 CVE Published
  • Aug 8, 2024 CVE Updated
  • Mar 13, 2026 Distribution Patch
Open in Interactive Console →
$ Console Community · 100/wk Open console ›