| 제목 | LPE and RCE in OpenSMTPD |
|---|
| 설명 | We discovered a vulnerability in OpenSMTPD, OpenBSD's mail server. This vulnerability is exploitable since May 2018 (commit a8e222352f, "switch smtpd to new grammar") and allows an attacker to execute arbitrary shell commands, as root:
- either locally, in OpenSMTPD's default configuration (which listens on the loopback interface and only accepts mail from localhost);
- or locally and remotely, in OpenSMTPD's "uncommented" default configuration (which listens on all interfaces and accepts external mail).
CVE-2020-7247
Proof of Concept Exploit available |
|---|
| 원천 | ⚠️ https://www.openwall.com/lists/oss-security/2020/01/28/3 |
|---|
| 사용자 | misc (UID 3) |
|---|
| 제출 | 2020. 01. 29. AM 09:43 (6 연령 ago) |
|---|
| 모더레이션 | 2020. 08. 10. AM 10:38 (6 months later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 149547 [OpenSMTPD 6.6 SMTP Session smtp_session.c MAIL FROM 권한 상승] |
|---|
| 포인트들 | 19 |
|---|