CVE-2010-4345

2010-12-14T16:00:00
ID CVE-2010-4345
Type cve
Reporter cve@mitre.org
Modified 2018-10-10T20:08:00

Description

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.