Symlink Attack Vulnerability in Exim 4.72 and Earlier

Symlink Attack Vulnerability in Exim 4.72 and Earlier

CVE-2011-0017 · MEDIUM Severity

AV:L/AC:M/AU:N/C:C/I:C/A:C

The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.

Learn more about our User Device Pen Test.