exim -- local privilege escalation

2011-01-31T00:00:00
ID 44CCFAB0-3564-11E0-8E81-0022190034C0
Type freebsd
Reporter FreeBSD
Modified 2011-01-31T00:00:00

Description

exim.org reports:

CVE-2011-0017 - check return value of setuid/setgid. This is a privilege escalation vulnerability whereby the Exim run-time user can cause root to append content of the attacker's choosing to arbitrary files.