Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2022 Tenable Network Security, Inc.GENTOO_GLSA-201401-32.NASL
HistoryJan 28, 2014 - 12:00 a.m.

GLSA-201401-32 : Exim: Multiple vulnerabilities

2014-01-2800:00:00
This script is Copyright (C) 2014-2022 Tenable Network Security, Inc.
www.tenable.com
10
JSON

The remote host is affected by the vulnerability described in GLSA-201401-32 (Exim: Multiple vulnerabilities)

Multiple vulnerabilities have been discovered in Exim. Please review the       CVE identifiers referenced below for details.

Impact :

A remote attacker could possibly execute arbitrary code with root       privileges, or cause a Denial of Service condition.

Workaround :

There is no known workaround at this time.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 201401-32.
#
# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike 
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(72159);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/03/28");

  script_cve_id(
    "CVE-2010-2023",
    "CVE-2010-2024",
    "CVE-2010-4344",
    "CVE-2010-4345",
    "CVE-2011-0017",
    "CVE-2011-1407",
    "CVE-2011-1764",
    "CVE-2012-5671"
  );
  script_bugtraq_id(
    40451,
    40454,
    45308,
    45341,
    46065,
    47736,
    47836,
    56285
  );
  script_xref(name:"GLSA", value:"201401-32");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/04/15");

  script_name(english:"GLSA-201401-32 : Exim: Multiple vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote Gentoo host is missing one or more security-related
patches.");
  script_set_attribute(attribute:"description", value:
"The remote host is affected by the vulnerability described in GLSA-201401-32
(Exim: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Exim. Please review the
      CVE identifiers referenced below for details.
  
Impact :

    A remote attacker could possibly execute arbitrary code with root
      privileges, or cause a Denial of Service condition.
  
Workaround :

    There is no known workaround at this time.");
  script_set_attribute(attribute:"see_also", value:"https://security.gentoo.org/glsa/201401-32");
  script_set_attribute(attribute:"solution", value:
"All Exim users should upgrade to the latest version:
      # emerge --sync
      # emerge --ask --oneshot --verbose '>=mail-mta/exim-4.80.1'");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Exim4 string_format Function Heap Buffer Overflow');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/01/27");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/01/28");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:exim");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Gentoo Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2014-2022 Tenable Network Security, Inc.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;

if (qpkg_check(package:"mail-mta/exim", unaffected:make_list("ge 4.80.1"), vulnerable:make_list("lt 4.80.1"))) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = qpkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Exim");
}
VendorProductVersionCPE
gentoolinuxeximp-cpe:/a:gentoo:linux:exim
gentoolinuxcpe:/o:gentoo:linux

Related

openvas 58
gentoo 1
securityvulns 8
fedora 8
nessus 46
suse 2
ubuntu 5
freebsd 4
debian 12
osv 5
packetstorm 2
ubuntucve 6
nmap 1
checkpoint_advisories 3
prion 6
debiancve 6
cve 6
altlinux 2
oraclelinux 2
attackerkb 2
canvas 1
centos 2
thn 1
redhat 2
cisa_kev 2
veracode 2
cert 2
seebug 1
metasploit 1
openvas
openvas
Gentoo Security Advisory GLSA 201401-32
2015-09-29 00:00:00
Fedora Update for exim FEDORA-2011-7059
2011-05-23 00:00:00
Fedora Update for exim FEDORA-2011-7059
2011-05-23 00:00:00
gentoo
gentoo
Exim: Multiple vulnerabilities
2014-01-27 00:00:00
securityvulns
securityvulns
Exim memory corruption and remote code execution
2011-02-03 00:00:00
Exim security issue in historical release
2010-12-13 00:00:00
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: exim-4.76-1.fc13
2011-05-17 20:57:49
[SECURITY] Fedora 14 Update: exim-4.76-1.fc14
2011-05-17 20:56:10
[SECURITY] Fedora 15 Update: exim-4.76-2.fc15
2011-05-19 04:32:04
nessus
nessus
openSUSE Security Update : exim (openSUSE-SU-2012:1404-1)
2014-06-13 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : exim4 vulnerabilities (USN-1060-1)
2011-02-11 00:00:00
Fedora 13 : exim-4.76-1.fc13 (2011-7059)
2011-05-18 00:00:00
suse
suse
exim: overflow in DKIM handling fixed (critical)
2012-10-27 19:08:36
remote code execution in exim
2010-12-13 10:39:26
ubuntu
ubuntu
Exim vulnerabilities
2011-02-10 00:00:00
Exim vulnerability
2012-10-26 00:00:00
Exim vulnerability
2011-05-10 00:00:00
freebsd
freebsd
Exim -- remote code execution and information disclosure
2011-05-10 00:00:00
Exim -- remote code execution
2012-10-25 00:00:00
exim -- local privilege escalation
2011-01-31 00:00:00
debian
debian
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-10 15:13:43
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-10 15:13:43
[SECURITY] [DSA-2154-1] exim4 security update
2011-01-30 10:41:58
osv
osv
exim4 - remote code execution
2010-12-10 00:00:00
exim4 - privilege escalation
2011-01-30 00:00:00
exim4 - heap overflow
2012-10-25 00:00:00
packetstorm
packetstorm
Exim4 <= 4.69 string_format Function Heap Buffer Overflow
2010-12-11 00:00:00
Exim 4.63 Remote Root Exploit
2010-12-11 00:00:00
ubuntucve
ubuntucve
CVE-2011-0017
2011-02-01 00:00:00
CVE-2012-5671
2012-10-26 00:00:00
CVE-2011-1764
2011-05-10 00:00:00
nmap
nmap
smtp-vuln-cve2010-4344 NSE Script
2011-06-24 15:37:53
checkpoint_advisories
checkpoint_advisories
Exim DKIM DNS Decoding Buffer Overflow (CVE-2012-5671)
2012-12-16 00:00:00
Exim MTA string_format Remote Code Execution (CVE-2010-4344)
2010-12-22 00:00:00
Exim Remote Code Execution (CVE-2010-4345)
2022-05-02 00:00:00
prion
prion
Heap overflow
2012-10-31 16:55:00
Format string
2011-10-05 02:56:00
Code injection
2011-05-16 18:55:00
debiancve
debiancve
CVE-2012-5671
2012-10-31 16:55:00
CVE-2011-1764
2011-10-05 02:56:00
CVE-2011-1407
2011-05-16 18:55:00
cve
cve
CVE-2012-5671
2012-10-31 16:55:00
CVE-2011-1764
2011-10-05 02:56:00
CVE-2011-1407
2011-05-16 18:55:00
altlinux
altlinux
Security fix for the ALT Linux 7 package exim version 4.76-alt3
2013-03-19 00:00:00
Security fix for the ALT Linux 5 package exim version 4.76-alt0.M50P.1
2011-05-16 00:00:00
oraclelinux
oraclelinux
exim security update
2010-12-10 00:00:00
exim security update
2011-01-17 00:00:00
attackerkb
attackerkb
CVE-2010-4344
2010-12-14 00:00:00
CVE-2010-4345
2010-12-14 00:00:00
canvas
canvas
Immunity Canvas: CVE_2010_4344
2010-12-14 16:00:00
centos
centos
exim security update
2011-01-27 09:07:54
exim security update
2011-01-27 09:23:09
thn
thn
Nmap 5.59 BETA1 - 40 new NSE scripts & improved IPv6
2011-07-01 11:41:00
redhat
redhat
(RHSA-2010:0970) Critical: exim security update
2010-12-10 00:00:00
(RHSA-2011:0153) Moderate: exim security update
2011-01-17 00:00:00
cisa_kev
cisa_kev
Exim Heap-Based Buffer Overflow Vulnerability
2022-03-25 00:00:00
Exim Privilege Escalation Vulnerability
2022-03-25 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:56:02
Privilege Escalation
2020-04-10 00:53:13
cert
cert
Exim string_format() buffer overflow
2010-12-13 00:00:00
Exim alternate configuration privilege escalation vulnerability
2010-12-13 00:00:00
seebug
seebug
Exim4 <= 4.69 - string_format Function Heap Buffer Overflow
2014-07-01 00:00:00
metasploit
metasploit
Exim4 string_format Function Heap Buffer Overflow
2010-12-11 10:55:24
JSON
Related for GENTOO_GLSA-201401-32.NASL
openvas58gentoo1securityvulns8fedora8nessus46suse2ubuntu5freebsd4debian12osv5packetstorm2ubuntucve6nmap1checkpoint_advisories3prion6debiancve6cve6altlinux2oraclelinux2attackerkb2canvas1centos2thn1redhat2cisa_kev2veracode2cert2seebug1metasploit1