Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-2957HistorySep 04, 2014 - 5:55 p.m.
CVE-2014-2957
2014-09-0417:55:00
Debian Security Bug Tracker
security-tracker.debian.org
8
0.056 Low
EPSS
Percentile
93.2%
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | exim4 | < 4.82.1-1 | exim4_4.82.1-1_all.deb |
| Debian | 11 | all | exim4 | < 4.82.1-1 | exim4_4.82.1-1_all.deb |
| Debian | 10 | all | exim4 | < 4.82.1-1 | exim4_4.82.1-1_all.deb |
| Debian | 999 | all | exim4 | < 4.82.1-1 | exim4_4.82.1-1_all.deb |
| Debian | 13 | all | exim4 | < 4.82.1-1 | exim4_4.82.1-1_all.deb |
Related
prion
prion
Code injection
2014-09-04 17:55:00
securityvulns
securityvulns
exim code execution
2014-05-29 00:00:00
[oss-security] Fwd: [exim-announce] Exim 4.82.1 Security Release
2014-05-29 00:00:00
nessus
nessus
openSUSE Security Update : exim (openSUSE-SU-2014:0983-1)
2014-08-12 00:00:00
cve
cve
CVE-2014-2957
2014-09-04 17:55:00
cvelist
cvelist
CVE-2014-2957
2014-09-04 17:00:00
ubuntucve
ubuntucve
CVE-2014-2957
2014-09-04 00:00:00