CVE-2001-0889

Exim 3.22 and earlier, in some configurations, does not properly verify the local part of an address when redirecting the address to a pipe, which could allow remote attackers to execute arbitrary commands via shell metacharacters.

Date published : 2002-06-25

http://www.securityfocus.com/bid/3728

http://marc.info/?l=bugtraq&m=100877978506387&w=2