CVE-2007-4560

This Metasploit module exploits CVE-2007-4560 in ClamAV Milter's blackhole mode, allowing remote code execution via an insecure popen call. It injects a payload into the 'From:' header of an SMTP message, which is then executed by the vulnerable service.

This exploit targets a vulnerability in Sendmail with clamav-milter by injecting commands into the RCPT TO field to modify /etc/inetd.conf and restart the inetd service, resulting in a root shell. The exploit leverages improper input validation in the email address parsing.

This Metasploit module exploits CVE-2007-4560 in ClamAV's clamav-milter (Sendmail mail filter) by injecting a command into the 'From:' header of an SMTP email, which is then executed due to an insecure popen call in black hole mode.

This repository contains a functional Python exploit for CVE-2007-4560, targeting Sendmail with ClamAV-Milter <0.91.2. The exploit injects commands via SMTP RCPT TO headers to achieve remote root command execution by modifying /etc/inetd.conf and restarting the inetd service.

This repository contains a functional exploit for CVE-2007-4560, targeting ClamAV Milter Sendmail versions prior to 0.91.2. The exploit leverages a command injection vulnerability in the email processing logic by crafting a malicious RCPT TO field to achieve remote code execution.

This Metasploit module exploits a command injection vulnerability in ClamAV Milter's blackhole mode (CVE-2007-4560) by injecting a malicious RCPT TO address and embedding a payload in the 'From:' header, leading to remote code execution.