Sahil Tandon wrote: > Bob Proulx wrote: > > The remote mta security exploit I couldn't locate references to was > > the "to=<root+:|exec /bin/sh ..." part of the attack. What mta is > > vulnerable to "+:|" in the To address? Or perhaps none are and this > > is simply a failed probe attempt? > > Likely related to CVE-2010-1132: > > http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1132 > http://archives.neohapsis.com/archives/fulldisclosure/2010-03/0139.html
Ah... Yes that does look like it. Thanks! Bob
