Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2015 Eero VolotinenOPENVAS:1361412562310121129
HistorySep 29, 2015 - 12:00 a.m.

Gentoo Security Advisory GLSA 201401-32

2015-09-2900:00:00
Copyright (C) 2015 Eero Volotinen
plugins.openvas.org
10

9.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.931 High

EPSS

Percentile

99.0%

JSON

Gentoo Linux Local Security Checks GLSA 201401-32

# SPDX-FileCopyrightText: 2015 Eero Volotinen
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.121129");
  script_version("2023-07-20T05:05:17+0000");
  script_tag(name:"creation_date", value:"2015-09-29 11:26:47 +0300 (Tue, 29 Sep 2015)");
  script_tag(name:"last_modification", value:"2023-07-20 05:05:17 +0000 (Thu, 20 Jul 2023)");
  script_name("Gentoo Security Advisory GLSA 201401-32");
  script_tag(name:"insight", value:"Multiple vulnerabilities have been discovered in Exim. Please review the CVE identifiers referenced below for details.");
  script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name:"URL", value:"https://security.gentoo.org/glsa/201401-32");
  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2010-2023", "CVE-2010-2024", "CVE-2010-4344", "CVE-2010-4345", "CVE-2011-0017", "CVE-2011-1407", "CVE-2011-1764", "CVE-2012-5671");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"qod_type", value:"package");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
  script_category(ACT_GATHER_INFO);
  script_tag(name:"summary", value:"Gentoo Linux Local Security Checks GLSA 201401-32");
  script_copyright("Copyright (C) 2015 Eero Volotinen");
  script_family("Gentoo Local Security Checks");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-gentoo.inc");

res = "";
report = "";

if((res=ispkgvuln(pkg:"mail-mta/exim", unaffected: make_list("ge 4.80.1"), vulnerable: make_list("lt 4.80.1"))) != NULL) {
  report += res;
}

if(report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99);
}

Related

nessus 47
gentoo 1
securityvulns 8
fedora 8
openvas 57
suse 2
ubuntu 5
freebsd 4
osv 5
debian 12
packetstorm 2
ubuntucve 6
nmap 1
checkpoint_advisories 3
prion 6
debiancve 6
cve 6
altlinux 2
thn 1
oraclelinux 2
attackerkb 2
canvas 1
centos 2
veracode 2
redhat 2
cert 2
cisa_kev 2
seebug 1
metasploit 1
nessus
nessus
GLSA-201401-32 : Exim: Multiple vulnerabilities
2014-01-28 00:00:00
openSUSE Security Update : exim (openSUSE-SU-2012:1404-1)
2014-06-13 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : exim4 vulnerabilities (USN-1060-1)
2011-02-11 00:00:00
gentoo
gentoo
Exim: Multiple vulnerabilities
2014-01-27 00:00:00
securityvulns
securityvulns
Exim memory corruption and remote code execution
2011-02-03 00:00:00
Exim security issue in historical release
2010-12-13 00:00:00
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-12 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: exim-4.76-1.fc13
2011-05-17 20:57:49
[SECURITY] Fedora 14 Update: exim-4.76-1.fc14
2011-05-17 20:56:10
[SECURITY] Fedora 15 Update: exim-4.76-2.fc15
2011-05-19 04:32:04
openvas
openvas
Fedora Update for exim FEDORA-2011-7059
2011-05-23 00:00:00
Fedora Update for exim FEDORA-2011-7059
2011-05-23 00:00:00
Ubuntu: Security Advisory (USN-1060-1)
2011-02-11 00:00:00
suse
suse
exim: overflow in DKIM handling fixed (critical)
2012-10-27 19:08:36
remote code execution in exim
2010-12-13 10:39:26
ubuntu
ubuntu
Exim vulnerabilities
2011-02-10 00:00:00
Exim vulnerability
2012-10-26 00:00:00
Exim vulnerability
2011-05-10 00:00:00
freebsd
freebsd
Exim -- remote code execution and information disclosure
2011-05-10 00:00:00
Exim -- remote code execution
2012-10-25 00:00:00
exim -- local privilege escalation
2011-01-31 00:00:00
osv
osv
exim4 - remote code execution
2010-12-10 00:00:00
exim4 - privilege escalation
2011-01-30 00:00:00
exim4 - heap overflow
2012-10-25 00:00:00
debian
debian
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-10 15:13:43
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
2010-12-10 15:13:43
[SECURITY] [DSA-2154-1] exim4 security update
2011-01-30 10:41:58
packetstorm
packetstorm
Exim4 <= 4.69 string_format Function Heap Buffer Overflow
2010-12-11 00:00:00
Exim 4.63 Remote Root Exploit
2010-12-11 00:00:00
ubuntucve
ubuntucve
CVE-2011-0017
2011-02-01 00:00:00
CVE-2012-5671
2012-10-26 00:00:00
CVE-2011-1764
2011-05-10 00:00:00
nmap
nmap
smtp-vuln-cve2010-4344 NSE Script
2011-06-24 15:37:53
checkpoint_advisories
checkpoint_advisories
Exim DKIM DNS Decoding Buffer Overflow (CVE-2012-5671)
2012-12-16 00:00:00
Exim MTA string_format Remote Code Execution (CVE-2010-4344)
2010-12-22 00:00:00
Exim Remote Code Execution (CVE-2010-4345)
2022-05-02 00:00:00
prion
prion
Heap overflow
2012-10-31 16:55:00
Format string
2011-10-05 02:56:00
Code injection
2011-05-16 18:55:00
debiancve
debiancve
CVE-2012-5671
2012-10-31 16:55:00
CVE-2011-1764
2011-10-05 02:56:00
CVE-2011-1407
2011-05-16 18:55:00
cve
cve
CVE-2012-5671
2012-10-31 16:55:00
CVE-2011-1764
2011-10-05 02:56:00
CVE-2011-1407
2011-05-16 18:55:00
altlinux
altlinux
Security fix for the ALT Linux 7 package exim version 4.76-alt3
2013-03-19 00:00:00
Security fix for the ALT Linux 5 package exim version 4.76-alt0.M50P.1
2011-05-16 00:00:00
thn
thn
Nmap 5.59 BETA1 - 40 new NSE scripts & improved IPv6
2011-07-01 11:41:00
oraclelinux
oraclelinux
exim security update
2010-12-10 00:00:00
exim security update
2011-01-17 00:00:00
attackerkb
attackerkb
CVE-2010-4344
2010-12-14 00:00:00
CVE-2010-4345
2010-12-14 00:00:00
canvas
canvas
Immunity Canvas: CVE_2010_4344
2010-12-14 16:00:00
centos
centos
exim security update
2011-01-27 09:07:54
exim security update
2011-01-27 09:23:09
veracode
veracode
Arbitrary Code Execution
2020-04-10 00:56:02
Privilege Escalation
2020-04-10 00:53:13
redhat
redhat
(RHSA-2010:0970) Critical: exim security update
2010-12-10 00:00:00
(RHSA-2011:0153) Moderate: exim security update
2011-01-17 00:00:00
cert
cert
Exim string_format() buffer overflow
2010-12-13 00:00:00
Exim alternate configuration privilege escalation vulnerability
2010-12-13 00:00:00
cisa_kev
cisa_kev
Exim Heap-Based Buffer Overflow Vulnerability
2022-03-25 00:00:00
Exim Privilege Escalation Vulnerability
2022-03-25 00:00:00
seebug
seebug
Exim4 <= 4.69 - string_format Function Heap Buffer Overflow
2014-07-01 00:00:00
metasploit
metasploit
Exim4 string_format Function Heap Buffer Overflow
2010-12-11 10:55:24

9.8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.931 High

EPSS

Percentile

99.0%

JSON
Related for OPENVAS:1361412562310121129
nessus47gentoo1securityvulns8fedora8openvas57suse2ubuntu5freebsd4osv5debian12packetstorm2ubuntucve6nmap1checkpoint_advisories3prion6debiancve6cve6altlinux2thn1oraclelinux2attackerkb2canvas1centos2veracode2redhat2cert2cisa_kev2seebug1metasploit1