Lucene search
K

22 matches found

Openbugbounty
Openbugbounty
added 2023/09/17 3:48 p.m.14 views

boulder.co.networkofcare.org Cross Site Scripting vulnerability OBB-3691533

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2020/03/23 12:0 a.m.46 views

GLSA-202003-47 : Exim: Heap-based buffer overflow

The remote host is affected by the vulnerability described in GLSA-202003-47 Exim: Heap-based buffer overflow It was discovered that Exim incorrectly handled certain string operations. Impact : A remote attacker, able to connect to a vulnerable Exim instance, could possibly execute arbitrary code...

9.8CVSS9.4AI score0.41589EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/10/28 12:0 a.m.58 views

Amazon Linux AMI : exim (ALAS-2019-1310)

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846 . There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command.CVE-2019-16928 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

10CVSS9.1AI score0.41589EPSS
Exploits4References2
Amazon
Amazon
added 2019/10/18 12:0 a.m.81 views

Critical: exim

Issue Overview: Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command.CVE-2019-16928 Affected Packages: exim Issue Correction: Run yum update exim or yu...

10CVSS10AI score0.41589EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2019/10/10 12:0 a.m.26 views

Fedora 29 : exim (2019-d778bd4137)

This is an update fixing CVE-2019-16928. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

9.8CVSS8.6AI score0.41589EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/10/07 12:0 a.m.25 views

Fedora 31 : exim (2019-e080507ba5)

This is an update fixing CVE-2019-16928. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

9.8CVSS8.6AI score0.41589EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2019/10/04 12:0 a.m.89 views

Fedora Update for exim FEDORA-2019-006dfc94cd

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.9AI score
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2019/10/02 12:0 a.m.30 views

Fedora 30 : exim (2019-006dfc94cd)

This is an update fixing CVE-2019-16928. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

9.8CVSS8.6AI score0.41589EPSS
Exploits3References2
ThreatPost
ThreatPost
added 2019/09/30 2:12 p.m.242 views

Critical Exim Flaw Opens Servers to Remote Code Execution

A patch has been issued for a critical flaw in the Exim email server software, which could potentially open Exim-based servers up to denial of service or remote code execution attacks. Exim, which is free software used on Unix-like operating systems including Linux or Mac OSX, serves as a mail...

7.5CVSS1.4AI score0.99961EPSS
Exploits28References10
The Hacker News
The Hacker News
added 2019/09/30 12:14 p.m.417 views

New Critical Exim Flaw Exposes Email Servers to Remote Attacks — Patch Released

A critical security vulnerability has been discovered and fixed in the popular open-source Exim email server software, which could allow a remote attacker to simply crash or potentially execute malicious code on targeted servers. Exim maintainers today released an urgent security update—Exim...

10CVSS2AI score0.99961EPSS
Exploits29
RedhatCVE
RedhatCVE
added 2019/09/30 9:21 a.m.35 views

CVE-2019-16928

A heap-based buffer overflow flaw was found in Exim. The overflow can be triggered via specially crafted SMTP-protocol EHLO message, which may lead to unauthenticated remote code execution. It is thought that the execution of the remote code would be at the exim user level although execution as t...

9.8CVSS3.4AI score0.41589EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2019/09/30 12:0 a.m.30 views

Ubuntu 19.04 : Exim vulnerability (USN-4141-1)

It was discovered that Exim incorrectly handled certain string operations. A remote attacker could use this issue to cause Exim to crash, resulting in a denial of service, or possibly execute arbitrary code. Note that Tenable Network Security has extracted the preceding description block directly...

9.8CVSS8.7AI score0.41589EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2019/09/30 12:0 a.m.142 views

Exim 4.92.x < 4.92.3 Heap Buffer Overflow

According to its banner, the version of Exim running on the remote host is 4.92.x prior to 4.92.3. It is, therefore, potentially affected by a remote code execution vulnerability allowing unauthenticated, remote attackers to execute arbitrary code via a heap buffer overflow in stringvformat...

9.8CVSS9.9AI score0.41589EPSS
Exploits3References2
Circl
Circl
added 2019/09/29 2:20 p.m.6 views

CVE-2019-16928

creationtimestamp| type| source ---|---|--- 2019-09-29 14:20:11+00:00| published-proof-of-concept| https://t.me/antichat/6642 2019-09-30 13:06:40+00:00| seen| https://t.me/SecLabNews/5895 2019-09-30 14:26:39+00:00| seen| https://t.me/thehackernews/483 2019-09-30 14:42:41+00:00| seen|...

9.8CVSS7.5AI score0.41589EPSS
Exploits3References10
Debian
Debian
added 2019/09/28 7:11 a.m.36 views

[SECURITY] [DSA 4536-1] exim4 security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4536-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso September 28, 2019 https://www.debian.org/security/faq -...

7.5CVSS3.3AI score0.41589EPSS
Exploits3
UbuntuCve
UbuntuCve
added 2019/09/28 12:0 a.m.38 views

CVE-2019-16928

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command...

9.8CVSS7.8AI score0.41589EPSS
Exploits3References3
Vulnrichment
Vulnrichment
added 2019/09/27 8:7 p.m.14 views

CVE-2019-16928

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command...

10AI score0.41589EPSS
Exploits3References14
Cvelist
Cvelist
added 2019/09/27 8:7 p.m.31 views

CVE-2019-16928

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command...

10AI score0.41589EPSS
Exploits3References14
CVE
CVE
added 2019/09/27 8:7 p.m.2127 views

CVE-2019-16928

Exim CVE-2019-16928 is a heap-based buffer overflow in string_vformat (string.c) triggered by a long EHLO command in Exim 4.92–4.92.2, enabling remote code execution. Several sources confirm the vulnerable path via smtp_in.c and related string formatting code (e.g., string_vformat, string_fmt_app...

9.8CVSS9.9AI score0.41589EPSS
In wildExploits3References15Affected Software1
ATTACKERKB
ATTACKERKB
added 2019/09/27 12:0 a.m.117 views

Exim EHLO crash bug

Exim 4.92 through 4.92.2 allows remote code execution, a different vulnerability than CVE-2019-15846. There is a heap-based buffer overflow in stringvformat in string.c involving a long EHLO command. Recent assessments: wchen-r7 at October 04, 2019 10:50pm UTC reported: CVE-2019-16928: Exim EHLO...

10CVSS9.7AI score0.82238EPSS
In wildExploits23References1
Rows per page
Query Builder