Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:DSA-501
HistoryMay 07, 2004 - 12:00 a.m.

exim - buffer overflow

2004-05-0700:00:00
Google
osv.dev
10

EPSS

0.422

Percentile

97.3%

JSON

Georgi Guninski discovered two stack-based buffer overflows. They can
not be exploited with the default configuration from the Debian
system, though. The Common Vulnerabilities and Exposures project
identifies the following problems that are fixed with this update:

  • CAN-2004-0399
    When “sender_verify = true” is configured in exim.conf a buffer
    overflow can happen during verification of the sender. This
    problem is fixed in exim 4.

  • CAN-2004-0400
    When headers_check_syntax is configured in exim.conf a buffer
    overflow can happen during the header check. This problem does
    also exist in exim 4.

For the stable distribution (woody) these problems have been fixed in
version 3.35-1woody3.

For the unstable distribution (sid) these problems have been fixed in
version 3.36-11 for exim 3 and in version 4.33-1 for exim 4.

We recommend that you upgrade your exim package.

Related

openvas 8
debian 4
nessus 6
osv 1
cvelist 2
ubuntucve 2
debiancve 2
nvd 2
cve 2
freebsd 1
gentoo 1
exploitdb 1
suse 1
openvas
openvas
Debian Security Advisory DSA 501-1 (exim)
2008-01-17 00:00:00
Debian Security Advisory DSA 502-1 (exim-tls)
2008-01-17 00:00:00
Debian Security Advisory DSA 502-1 (exim-tls)
2008-01-17 00:00:00
debian
debian
[SECURITY] [DSA 501-1] New exim packages fix buffer overflows
2004-05-07 05:54:23
[SECURITY] [DSA 502-1] New exim-tls packages fix buffer overflows
2004-05-11 14:06:13
[SECURITY] [DSA 502-1] New exim-tls packages fix buffer overflows
2004-05-11 14:06:13
nessus
nessus
Exim < 3.36 / 4.33 Multiple Remote Overflows
2004-05-06 00:00:00
Debian DSA-502-1 : exim-tls - buffer overflow
2004-09-29 00:00:00
Debian DSA-501-1 : exim - buffer overflow
2004-09-29 00:00:00
osv
osv
exim-tls - buffer overflow
2004-05-11 00:00:00
cvelist
cvelist
CVE-2004-0399
2004-05-12 04:00:00
CVE-2004-0400
2004-05-12 04:00:00
ubuntucve
ubuntucve
CVE-2004-0399
2004-07-07 00:00:00
CVE-2004-0400
2004-07-07 00:00:00
debiancve
debiancve
CVE-2004-0399
2004-07-07 04:00:00
CVE-2004-0400
2004-07-07 04:00:00
nvd
nvd
CVE-2004-0399
2004-07-07 04:00:00
CVE-2004-0400
2004-07-07 04:00:00
cve
cve
CVE-2004-0400
2004-07-07 04:00:00
CVE-2004-0399
2004-07-07 04:00:00
freebsd
freebsd
exim buffer overflow when verify = header_syntax is used
2004-05-06 00:00:00
gentoo
gentoo
Exim verify=header_syntax buffer overflow
2004-05-14 00:00:00
exploitdb
exploitdb
Exim Sender 3.35 - Verification Remote Stack Buffer Overrun
2004-05-06 00:00:00
suse
suse
local privilege escalation in mc
2004-05-14 14:09:57

EPSS

0.422

Percentile

97.3%

JSON
Related for OSV:DSA-501
openvas8debian4nessus6osv1cvelist2ubuntucve2debiancve2nvd2cve2freebsd1gentoo1exploitdb1suse1