Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2014-2972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted...

4.6CVSS7.4AI score0.00487EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.23 views

RHEL 5 : exim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exim: out-of-bounds access in stringinterpretescape leading to buffer overflow in the SMTP delivery proce...

9.8CVSS8.9AI score0.82238EPSS
Exploits35References6
Tenable Nessus
Tenable Nessus
added 2016/03/16 12:0 a.m.52 views

Ubuntu 14.04 LTS : Exim vulnerabilities (USN-2933-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2933-1 advisory. It was discovered that Exim incorrectly filtered environment variables when used with the perlstartup configuration option. If the perlstartup option was...

7CVSS7.7AI score0.05901EPSS
Exploits13References3
OpenVAS
OpenVAS
added 2016/03/16 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-2933-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7CVSS6.9AI score0.05901EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.25 views

Amazon Linux AMI : exim (ALAS-2014-395)

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI...

4.6CVSS7.3AI score0.00487EPSS
Exploits0References2
OSV
OSV
added 2014/09/04 5:55 p.m.8 views

CVE-2014-2972

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value...

7AI score
Exploits0References9
CVE
CVE
added 2014/09/04 5:0 p.m.120 views

CVE-2014-2972

The CVE-2014-2972 issue affects Exim prior to 4.83, where expand.c expands mathematical comparisons twice. This allows a local attacker to gain privileges or execute arbitrary commands via a crafted lookup value. Public advisories (Ubuntu USN-2933-1, Gentoo GLSA-201607-12) describe fixes/upgrades...

4.6CVSS7AI score0.00487EPSS
Exploits0References8Affected Software1
Amazon
Amazon
added 2014/08/21 12:0 a.m.40 views

Low: exim

Issue Overview: expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value. Affected Packages: exim Issue Correction: Run yum update exim or yum update --advisory ALAS-2014-395 to updat...

4.6CVSS7.6AI score0.00487EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2014/08/12 12:0 a.m.45 views

openSUSE Security Update : exim (openSUSE-SU-2014:0983-1)

"Changes in exim : - Silence static checkers; beo1506. - update to 4.83 This release of Exim includes one incompatible fix : + the behavior of expansion of arguments to math comparison functions , was unexpected, expanding the values twice; CVE-2014-2972; bnc888520 This release contains the...

7.5CVSS7.1AI score0.08382EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2014/08/05 12:0 a.m.25 views

Fedora Update for exim FEDORA-2014-8803

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.9AI score0.00487EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/08/04 12:0 a.m.27 views

Fedora 20 : exim-4.80.1-7.fc20 (2014-8865)

Security fix for CVE-2014-2972 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.6CVSS7.2AI score0.00487EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/08/04 12:0 a.m.34 views

Fedora 19 : exim-4.80.1-4.fc19 (2014-8803)

Security fix for CVE-2014-2972 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.6CVSS7.2AI score0.00487EPSS
Exploits0References3
Rows per page
Query Builder