CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
10.1%
The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.
Vendor | Product | Version | CPE |
---|---|---|---|
exim | exim | * | cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:* |
exim | exim | 2.10 | cpe:2.3:a:exim:exim:2.10:*:*:*:*:*:*:* |
exim | exim | 2.11 | cpe:2.3:a:exim:exim:2.11:*:*:*:*:*:*:* |
exim | exim | 2.12 | cpe:2.3:a:exim:exim:2.12:*:*:*:*:*:*:* |
exim | exim | 3.00 | cpe:2.3:a:exim:exim:3.00:*:*:*:*:*:*:* |
exim | exim | 3.01 | cpe:2.3:a:exim:exim:3.01:*:*:*:*:*:*:* |
exim | exim | 3.02 | cpe:2.3:a:exim:exim:3.02:*:*:*:*:*:*:* |
exim | exim | 3.03 | cpe:2.3:a:exim:exim:3.03:*:*:*:*:*:*:* |
exim | exim | 3.10 | cpe:2.3:a:exim:exim:3.10:*:*:*:*:*:*:* |
exim | exim | 3.11 | cpe:2.3:a:exim:exim:3.11:*:*:*:*:*:*:* |
ftp://ftp.exim.org/pub/exim/ChangeLogs/ChangeLog-4.74
lists.exim.org/lurker/message/20110126.034702.4d69c278.en.html
lists.opensuse.org/opensuse-security-announce/2011-02/msg00004.html
osvdb.org/70696
secunia.com/advisories/43101
secunia.com/advisories/43128
secunia.com/advisories/43243
www.debian.org/security/2011/dsa-2154
www.securityfocus.com/bid/46065
www.ubuntu.com/usn/USN-1060-1
www.vupen.com/english/advisories/2011/0224
www.vupen.com/english/advisories/2011/0245
www.vupen.com/english/advisories/2011/0364
www.vupen.com/english/advisories/2011/0464
exchange.xforce.ibmcloud.com/vulnerabilities/65028