Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Fedora
Fedoraadded 2011/04/12 9:26 p.m.35 views

[SECURITY] Fedora 14 Update: exim-4.72-2.fc14

Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...

4.4CVSS6.3AI score0.0023EPSS
Exploits0
Prion
Prionadded 2011/02/02 1:0 a.m.25 views

Design/Logic Flaw

The openlog function in log.c in Exim 4.72 and earlier does not check the return value from 1 setuid or 2 setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack...

6.9CVSS6.6AI score0.00118EPSS
Exploits0References15Affected Software1
Debian CVE
Debian CVEadded 2011/02/02 12:0 a.m.26 views

CVE-2011-0017

The openlog function in log.c in Exim 4.72 and earlier does not check the return value from 1 setuid or 2 setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack...

6.9CVSS7.1AI score0.00118EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2010/12/14 3:0 p.m.4 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive...

7AI score0.06508EPSS
Exploits4References28
ATTACKERKB
ATTACKERKBadded 2010/12/14 12:0 a.m.34 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive. Recent assessments: Assessed Attacker Value...

7.8CVSS6.3AI score0.06508EPSS
In wildExploits4References32
UbuntuCve
UbuntuCveadded 2010/12/14 12:0 a.m.60 views

CVE-2010-4345

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spooldirectory directive...

7.8CVSS7.4AI score0.06508EPSS
Exploits4References6
securityvulns
securityvulnsadded 2010/06/08 12:0 a.m.44 views

Multiple vulnerabilities in Exim

================================== Exim Mailer, multiple vulnerabilites June 3, 2010 CVE-2010-2023, CVE-2010-2024 ================================== ==Description== Two vulnerabilities have been discovered in Exim 4, a popular mail transfer agent used on Unix-like systems www.exim.org. 1. When Ex...

4.4CVSS0.2AI score0.0023EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2010/06/07 12:0 a.m.42 views

CVE-2010-2024

transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/...

4.4CVSS7.1AI score0.00174EPSS
Exploits0References4
Rows per page
Query Builder