Lucene search
K

Exim 4.98 SQL Injection

๐Ÿ—“๏ธย 24 Feb 2025ย 00:00:00Reported byย Oscar BatailleTypeย 
packetstorm
ย packetstorm
๐Ÿ”—ย packetstorm.news๐Ÿ‘ย 634ย Views

Exim 4.98 vulnerable to SQL injection if specific configurations and conditions are met.

Related
Code
ReporterTitlePublishedViews
Family
FreeBSD
exim -- SQL injection
21 Feb 202500:00
โ€“freebsd
0day.today
Exim 4.98 SQL Injection Vulnerability
24 Feb 202500:00
โ€“zdt
AlpineLinux
CVE-2025-26794
21 Feb 202513:15
โ€“alpinelinux
AstraLinux
Astra Linux โ€“ Vulnerability in exim4
19 Jun 202611:10
โ€“astralinux
Information Security Automation
April Linux Patch Wednesday
30 Apr 202523:34
โ€“avleonov
BDU FSTEC
Vulnerabilities include SQLite hint functions and ETRN serialization of the Exim mail server, which allows attackers to cause service interruptions.
24 Feb 202500:00
โ€“bdu_fstec
Circl
CVE-2025-26794
19 Feb 202522:30
โ€“circl
CNNVD
Exim ๅฎ‰ๅ…จๆผๆดž
21 Feb 202500:00
โ€“cnnvd
CVE
CVE-2025-26794
21 Feb 202500:00
โ€“cve
Cvelist
CVE-2025-26794
21 Feb 202500:00
โ€“cvelist
Rows per page
# CVE 2025-26794
    
    - Sat, 08 Feb 2025 21:14:37 +0100: reported
      - by: "Oscar Bataille" <[email protected]>
      - to: [email protected]
    - Sun, 9 Feb 2025 00:00:05 +0100: report confirmed
    - Tue, 11 Feb 2025 00:23:34 +0100: issue confirmed
    - Tue, 11 Feb 2025 00:23:34 +0100: issue confirmed
    - Tue, 11 Feb 2025 12:54:10 +0000: CVE ID requested
    - Fri, 14 Feb 2025 04:19:13 -0500: CVE ID 2025-26794 received
    - Tue, 18 Feb 2025 20:56:25 +0100: sent notification to <[email protected]>
    - Wed, 19 Feb 2025 23:07:02 +0100: sent notification to <[email protected]>, and <[email protected]>
    - Wed, 19 Feb 2025 23:07:02 +0100: sent notification to <[email protected]>, and <[email protected]>
    - Thu, 20 Feb 2025 18:36:34 +0100: sent notification to <[email protected]>
    - Fri, 21 Feb 2025 13:00:00 +0100: published the changes on https://code.exim.org/exim/exim.git
    
    
    ## Details
    
    A SQL injection is possible.
    
    The following conditions have to be met for being vulnerable:
    
    - Exim Version 4.98
    - Build time option _USE_SQLITE_ is set (it enables the use of SQLite
      for the hints databases) -- check the output of `exim -bV`, whether it
      contains
      ```
      Hints DB:
        Using sqlite3
      ```
    - Runtime config enables ETRN (`acl_smtp_etrn` returns _accept_
      (defaults to _deny_))
    - Runtime config enforces ETRN serialization (`smtp_etrn_serialize` is
      set to _true_ (defaults to _true_))
    
    ## Acknowledgements
    
    Thanks to Oscar Bataille for discovering and reporting this issue in a
    responsible manner.

Data

Build on a solid foundation withย Vulners data

Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data

Api

Power your application withย Vulners API

The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access

App

Assess and manage vulnerabilities withย Vulnersย tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

24 Feb 2025 00:00Current
8.5High risk
Vulners AI Score8.5
CVSS 3.17.5
EPSS0.75782
SSVC
634