CVE-2020-28007

Name of the Vulnerable Software and Affected Versions Exim versions prior to 4.94.2

Description The issue is related to the Exim message transfer agent and involves a problem with symbolic link tracking. An attacker can exploit this by creating a specially crafted symbolic link to a file and overwriting it with application privileges, potentially allowing privilege escalation in the system. This can be achieved because Exim operates as root in the log directory, which is owned by a non-root user, making it vulnerable to symlink or hard link attacks that can overwrite critical root-owned files anywhere on the filesystem.

Recommendations For Exim versions prior to 4.94.2, update to version 4.94.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the log directory to minimize the risk of exploitation.