Security Advisory

CVE-2010-4345

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-12-14 15:00:00

Last updated 2025-10-22 00:05:50

Assigner redhat

State PUBLISHED

Description

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.

← Browse all CVEs View on cve.org ↗