7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.002 Low
EPSS
Percentile
55.6%
Multiple buffer overflows in Exim before 4.43 may allow attackers to
execute arbitrary code via (1) an IPv6 address with more than 8 components,
as demonstrated using the -be command line option, which triggers an
overflow in the host_aton function, or (2) the -bh command line option or
dnsdb PTR lookup, which triggers an overflow in the dns_build_reverse
function.