Lucene search
+L

12 matches found

Tenable Nessus
Tenable Nessus
added 2019/08/20 12:0 a.m.80 views

Exim < 4.92.1 Input-Validation RCE

According to its banner, the version of Exim running on the remote host is prior to 4.92.1. It is, therefore, potentially affected an input-validation flaw in the '$sort ' expansion. A remote attacker could potentially execute arbitrary code. Note that the default configuration does not include...

10CVSS8.7AI score0.08622EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.25 views

openSUSE Security Update : exim (openSUSE-2019-1812)

This update for exim fixes the following issues : - CVE-2019-13917: Fixed an issue with $sort expansion which could allow remote attackers to execute other programs with root privileges boo1142207. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

10CVSS8.4AI score0.08622EPSS
Exploits0References2
ArchLinux
ArchLinux
added 2019/08/05 12:0 a.m.27 views

[ASA-201908-4] exim: arbitrary code execution

Arch Linux Security Advisory ASA-201908-4 ========================================= Severity: Critical Date : 2019-08-05 CVE-ID : CVE-2019-13917 Package : exim Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1011 Summary ======= The package exim before versi...

10CVSS2.8AI score0.08622EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2019/07/29 12:0 a.m.246 views

Exim 4.85 - 4.92 RCE Vulnerability

Exim is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:exim:exim"; if...

10CVSS9.8AI score0.08622EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/07/26 12:0 a.m.34 views

Debian DSA-4488-1 : exim4 - security update

Jeremy Harris discovered that Exim, a mail transport agent, does not properly handle the $sort expansion. This flaw can be exploited by a remote attacker to execute programs with root privileges in non-default and unusual configurations where $sort expansion is used for items that can be controll...

10CVSS8.4AI score0.08622EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/07/26 12:0 a.m.30 views

Amazon Linux AMI : exim (ALAS-2019-1252)

Exim allows remote code execution as root in some unusual configurations that use the $sort expansion for items that can be controlled by an attacker e.g., $localpart or $domain. CVE-2019-13917 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

10CVSS9AI score0.08622EPSS
Exploits0References2
OSV
OSV
added 2019/07/25 8:15 p.m.29 views

CVE-2019-13917

Exim 4.85 through 4.92 fixed in 4.92.1 allows remote code execution as root in some unusual configurations that use the $sort expansion for items that can be controlled by an attacker e.g., $localpart or $domain...

9.8CVSS9.8AI score0.08622EPSS
Exploits0References5
CVE
CVE
added 2019/07/25 7:7 p.m.2124 views

CVE-2019-13917

Exim (MTA) versions 4.85–4.92 are affected by CVE-2019-13917, which allows remote code execution as root in certain configurations that enable the ${sort } expansion (e.g., manipulated $local_part or $domain). The issue is fixed in version 4.92.1. In affected setups, a remote attacker could explo...

10CVSS9.6AI score0.08622EPSS
Exploits0References5Affected Software1
Debian
Debian
added 2019/07/25 1:8 p.m.84 views

[SECURITY] [DSA 4488-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4488-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 25, 2019 https://www.debian.org/security/faq -...

10CVSS9.5AI score0.08622EPSS
Exploits0
Debian
Debian
added 2019/07/25 1:8 p.m.27 views

[SECURITY] [DSA 4488-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4488-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 25, 2019 https://www.debian.org/security/faq -...

10CVSS2.1AI score0.08622EPSS
Exploits0
Amazon
Amazon
added 2019/07/25 12:0 a.m.127 views

Important: exim

Issue Overview: Exim allows remote code execution as root in some unusual configurations that use the $sort expansion for items that can be controlled by an attacker e.g., $localpart or $domain. CVE-2019-13917 Affected Packages: exim Issue Correction: Run yum update exim or yum update --advisory...

10CVSS9.9AI score0.08622EPSS
Exploits0
Circl
Circl
added 2019/07/23 10:19 p.m.7 views

CVE-2019-13917

creationtimestamp| type| source ---|---|--- 2019-07-23 22:19:46+00:00| published-proof-of-concept| https://t.me/techb0ltGenona/788 2019-07-25 16:56:02+00:00| seen| https://t.me/ctinow/13883 2019-07-26 09:30:19+00:00| seen| https://t.me/SecLabNews/5450 2024-11-14 06:07:25+00:00| seen|...

10CVSS8.5AI score0.08622EPSS
Exploits0References3
Rows per page
Query Builder