3 matches found
Debian DSA-376-2 : exim - buffer overflow
A buffer overflow exists in exim, which is the standard mail transport agent in Debian. By supplying a specially crafted HELO or EHLO command, an attacker could cause a constant string to be written past the end of a buffer allocated on the heap. This vulnerability is not believed at this time to...
CVE-2003-0743
Heap-based buffer overflow in smtpin.c for Exim 3 exim3 before 3.36 and Exim 4 exim4 before 4.21 may allow remote attackers to execute arbitrary code via an invalid 1 HELO or 2 EHLO argument with a large number of spaces followed by a NULL character and a newline, which is not properly trimmed...
CVE-2003-0743
CVE-2003-0743 affects Exim 3 (before 3.36) and Exim 4 (before 4.21); a heap-based buffer overflow in smtp_in.c triggered by long, space-filled HELO/EHLO arguments followed by a NULL and newline could let remote attackers execute code. Debian advisory DSA-376 notes the remediation: updates to exim...