19 matches found
Oracle: Security Advisory (ELSA-2010-0970)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : exim (openSUSE-SU-2010:1052-1)
remote attackers could trick exim into running arbitrary code CVE-2010-4344. A privilege escalation flaw allowed attackers to gain root access CVE-2010-4345. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Scientific Linux Security Update : exim on SL4.x, SL5.x i386/x86_64
A buffer overflow flaw was discovered in Exim's internal stringvformat function. A remote attacker could use this flaw to execute arbitrary code on the mail server running Exim. CVE-2010-4344 Note: successful exploitation would allow a remote attacker to execute arbitrary code as root on a...
CentOS Update for exim CESA-2010:0970 centos4 x86_64
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
smtp-vuln-cve2010-4344 NSE Script
Checks for and/or exploits a heap overflow within versions of Exim prior to version 4.69 CVE-2010-4344 and a privilege escalation vulnerability in Exim 4.72 and prior CVE-2010-4345. The heap overflow vulnerability allows remote attackers to execute arbitrary code with the privileges of the Exim...
openSUSE Security Update : exim (openSUSE-SU-2010:1052-1)
remote attackers could trick exim into running arbitrary code CVE-2010-4344. A privilege escalation flaw allowed attackers to gain root access CVE-2010-4345. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
openSUSE Security Update : exim (openSUSE-SU-2010:1052-1)
remote attackers could trick exim into running arbitrary code CVE-2010-4344. A privilege escalation flaw allowed attackers to gain root access CVE-2010-4345. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
SuSE Update for exim SUSE-SA:2010:059
Check for the Version of exim OpenVAS Vulnerability Test SuSE Update for exim SUSE-SA:2010:059 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...
CVE-2010-4344
Heap-based buffer overflow in the stringvformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging...
Immunity Canvas: CVE_2010_4344
Name| CVE20104344 ---|--- CVE| CVE-2010-4344 Exploit Pack| CANVAS Description| CVE-2010-4344 Notes| CVE Name: CVE-2010-4344 VENDOR: exim Repeatability: Infinite References: 'http://bugs.exim.org/showbug.cgi?id=787', 'http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html' CVE Url:...
CVE-2010-4344
Heap-based buffer overflow in the stringvformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging...
CVE-2010-4344
CVE-2010-4344 : Exim before 4.70 has a heap-based buffer overflow in string_vformat() in string.c. A remote attacker can exploit this via an SMTP session (two MAIL commands with a large crafted header) to execute arbitrary code, potentially as the Exim user/root. The issue is fixed by upgrading t...
Exim security issue in historical release
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 It has come to the attention of The Exim Maintainers that there is an exploit circulating in the wild which affects versions of Exim versions 4.69 and below -- Exim 4.70 was released in November 2009. The flaw permits remote code execution over SMTP...
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-2131-1 [email protected] http://www.debian.org/security/ Stefan Fritsch December 10, 2010 http://www.debian.org/security/faq -...
Debian DSA-2131-1 : exim4 - arbitrary code execution
Several vulnerabilities have been found in exim4 that allow a remote attacker to execute arbitrary code as root user. Exploits for these issues have been seen in the wild. This update fixes a memory corruption issue that allows a remote attacker to execute arbitrary code as the Debian-exim user...
CVE-2010-4344
creationtimestamp| type| source ---|---|--- 2010-12-11 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15725 2010-12-16 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16925 2018-05-29 15:50:33+00:00| seen|...
[SECURITY] [DSA-2131-1] New exim4 packages fix remote code execution
------------------------------------------------------------------------ Debian Security Advisory DSA-2131-1 [email protected] http://www.debian.org/security/ Stefan Fritsch December 10, 2010 http://www.debian.org/security/faq -...
exim security update
4.63-3.el55.2 - fix buffer overflow in stringformat CVE-2010-4344, 662019...
DSA-2131-1 exim4 - remote code execution
Bulletin has no description...