CVE-2014-2972

Опубликовано: 04 сент. 2014

Источник: debian

EPSS Низкий

Описание

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
exim4	fixed	4.82.1-2		package
exim4	no-dsa		squeeze	package
exim4	fixed	4.80-7+deb7u1	wheezy	package

EPSS

Процентиль: 44%

0.00213

Низкий

Связанные уязвимости

CVE-2014-2972

ubuntu

больше 11 лет назад

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

CVE-2014-2972

redhat

больше 11 лет назад

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

CVE-2014-2972

nvd

больше 11 лет назад

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

GHSA-9qqj-vrhc-8q74

github

больше 3 лет назад

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

EPSS

Процентиль: 44%

0.00213

Низкий