CVE-2019-19920

Posted on 2019년 12월 23일2019년 12월 23일 by admin

CVE-2019-19920

sa-exim 4.2.1 allows attackers to execute arbitrary code if they can write a .cf file or a rule. This occurs because Greylisting.pm relies on eval (rather than direct parsing and/or use of the taint feature). This issue is similar to CVE-2018-11805.

Source: CVE-2019-19920

답글 남기기 응답 취소