Lucene search

K

RedosROS-20240730-09

HistoryJul 30, 2024 - 12:00 a.m.

ROS-20240730-09

2024-07-3000:00:00

redos.red-soft.ru

6

exim mail server

ntlm protocol

buffer boundaries

memory

remote intruder

unauthorized access

CVSS3

3.7

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

7.1

Confidence

Low

Vulnerability of NTLM (New Technology LAN Manager) protocol implementation in Exim mail server is related to
operation exceeding buffer boundaries in memory when processing requests. Exploitation of the vulnerability could
allow a remote intruder to gain unauthorized access to protected information

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64exim< 4.98-2UNKNOWN

CVSS3

3.7

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

AI Score

7.1

Confidence

Low

Related for ROS-20240730-09

redhatcve1 nvd1 osv5 veracode1 ubuntucve1 cgr1 vulnrichment1 cve1 zdi1 debiancve1 cvelist1 alpinelinux1 wolfi1 debian2 openvas10 nessus11 cloudlinux1 ubuntu1 fedora3 gentoo1 redos1 malwarebytes1 thn1