Back to main page

OpenBSD OpenSMTPD Remote Code Exection

Category:

Command Injection

Sub-category:

Linux commands

Severity:

high

Description:

Detects attempts to execute a shell command through a malformed MAIL FROM command. OpenBSD OpenSMTPD allows remote attackers to execute arbitrary commands as root via a malicious MAIL FROM field.