Lucene search

[email protected]CVE-2002-0274

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0274

2003-04-0205:00:00

[email protected]

web.nvd.nist.gov

exim

buffer overflow

command line

security vulnerability

privileges escalation

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Exim 3.34 and earlier may allow local users to gain privileges via a buffer overflow in long -C (configuration file) and other command line arguments.

Affected configurations

NVD

Node

university_of_cambridgeeximRange≤3.34

CPENameOperatorVersion
university_of_cambridge:eximuniversity of cambridge eximle3.34

CPE	Name	Operator	Version
university_of_cambridge:exim	university of cambridge exim	le	3.34

References

marc.info/?l=bugtraq&m=101362618118598&w=2

www.iss.net/security_center/static/8194.php

www.redhat.com/support/errata/RHSA-2002-208.html

www.securityfocus.com/bid/4096

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0274

nvd1 cvelist1