CVE-2004-0399

Опубликовано: 07 июл. 2004

Источник: nvd

CVSS2: 7.5

EPSS Средний

Описание

Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html
http://secunia.com/advisories/11558
http://www.debian.org/security/2004/dsa-501
Patch
Vendor Advisory
http://www.debian.org/security/2004/dsa-502
Patch
Vendor Advisory
http://www.guninski.com/exim1.html
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16079
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html
http://secunia.com/advisories/11558
http://www.debian.org/security/2004/dsa-501
Patch
Vendor Advisory
http://www.debian.org/security/2004/dsa-502
Patch
Vendor Advisory
http://www.guninski.com/exim1.html
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16079

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:university_of_cambridge:exim:*:*:*:*:*:*:*:*

cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.42079

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-0399

ubuntu

около 21 года назад

CVE-2004-0399

debian

около 21 года назад

Stack-based buffer overflow in Exim 3.35, and other versions before 4, ...

GHSA-rf64-vpcw-m8c6

github

больше 3 лет назад

EPSS

Процентиль: 97%

0.42079

Средний

7.5 High

CVSS2

Дефекты

NVD-CWE-Other