Title: Exim string_format Function Remote Overflow
Dec 07, 2010
Dec 10, 2010
Dec 09, 2010
Exim is prone to a remote overflow condition. The string_format function fails to properly sanitize user-supplied input resulting in a heap buffer overflow. With a specially crafted request, a local attacker can potentially cause arbitrary code execution.