Lucene search

[email protected]NVD:CVE-2002-1381

HistoryDec 23, 2002 - 5:00 a.m.

CVE-2002-1381

2002-12-2305:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

54.7%

JSON

Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pid_file_path value.

Affected configurations

Nvd

Node

university_of_cambridgeeximMatch3.35

university_of_cambridgeeximMatch3.36

university_of_cambridgeeximMatch4.10

VendorProductVersionCPE
university_of_cambridgeexim3.35cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*
university_of_cambridgeexim3.36cpe:2.3:a:university_of_cambridge:exim:3.36:*:*:*:*:*:*:*
university_of_cambridgeexim4.10cpe:2.3:a:university_of_cambridge:exim:4.10:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
university_of_cambridge	exim	3.35	cpe:2.3:a:university_of_cambridge:exim:3.35:::::::*
university_of_cambridge	exim	3.36	cpe:2.3:a:university_of_cambridge:exim:3.36:::::::*
university_of_cambridge	exim	4.10	cpe:2.3:a:university_of_cambridge:exim:4.10:::::::*

References

groups.yahoo.com/group/exim-users/message/42358

marc.info/?l=bugtraq&m=103903403527788&w=2

marc.info/?l=bugtraq&m=104006219018664&w=2

www.exim.org/pipermail/exim-users/Week-of-Mon-20021202/046978.html

www.securityfocus.com/bid/6314

exchange.xforce.ibmcloud.com/vulnerabilities/10761

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

54.7%

JSON

Related for NVD:CVE-2002-1381

cvelist1 debiancve1 exploitdb1 cve1