Fragen? Antworten! Siehe auch: Alternativlos
To estimate the severity of this bug, we developed an exploit targeting SMTP daemon of exim. The exploitation mechanism used to achieve pre-auth remote code execution is described in the following paragraphs.
Exim hat anscheinend von Anfang an einen off-by-one in ihrem Base64-Dekoder.