Security Advisory

CVE-2020-28021

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-06 04:16:38

Last updated 2024-08-04 16:25:44

Assigner mitre

State PUBLISHED

Description

Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters. An authenticated remote SMTP client can insert newline characters into a spool file (which indirectly leads to remote code execution as root) via AUTH= in a MAIL FROM command.

← Browse all CVEs View on cve.org ↗