Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-51766

Опубликовано: 24 дек. 2023
Источник: debian

Описание

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
exim4fixed4.97-3package

Примечания

  • https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/

  • https://www.openwall.com/lists/oss-security/2023/12/21/6

  • https://bugs.exim.org/show_bug.cgi?id=3063

  • https://exim.org/static/doc/security/CVE-2023-51766.txt

  • https://git.exim.org/exim.git/commit/cf1376206284f2a4f11e32d931d4aade34c206c5 (exim-4.98-RC0)

  • https://git.exim.org/exim.git/commit/4596719398f6f2365bed563aafd757a6433ce7b4 (exim-4.98-RC0)

  • https://git.exim.org/exim.git/commit/5bb786d5ad568a88d50d15452aacc8404047e5ca (exim-4.98-RC0)

Связанные уязвимости

ubuntu логотип

CVE-2023-51766

CVSS3: 5.3
ubuntu
больше 1 года назад

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

nvd логотип

CVE-2023-51766

CVSS3: 5.3
nvd
больше 1 года назад

Exim before 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

redos логотип

ROS-20240408-20

CVSS3: 5.3
redos
около 1 года назад

Уязвимость exim

github логотип

GHSA-w6ww-869j-cgm6

CVSS3: 4.3
github
больше 1 года назад

Exim through 4.97 allows SMTP smuggling in certain configurations. Remote attackers can use a published exploitation technique to inject e-mail messages that appear to originate from the Exim server, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

fstec логотип

BDU:2024-00108

CVSS3: 6.5
fstec
больше 1 года назад

Уязвимость реализации протокола SMTP почтового сервера Exim, позволяющая нарушителю обойти политику безопасности SPF (Sender Policy Framework) и отправить скрытый HTTP-запрос (атака типа HTTP Request Smuggling)