Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-16943

Опубликовано: 25 нояб. 2017
Источник: nvd
CVSS3: 9.8
CVSS2: 7.5
EPSS Высокий

Описание

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:exim:exim:4.88:-:*:*:*:*:*:*
cpe:2.3:a:exim:exim:4.89:-:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

EPSS

Процентиль: 99%
0.745
Высокий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-416

Связанные уязвимости

ubuntu логотип

CVE-2017-16943

CVSS3: 9.8
ubuntu
около 8 лет назад

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands.

redhat логотип

CVE-2017-16943

CVSS3: 9.8
redhat
около 8 лет назад

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands.

debian логотип

CVE-2017-16943

CVSS3: 9.8
debian
около 8 лет назад

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 ...

suse-cvrf логотип

openSUSE-SU-2017:3220-1

suse-cvrf
около 8 лет назад

Security update for exim

github логотип

GHSA-6pmg-h497-cq5q

CVSS3: 9.8
github
больше 3 лет назад

The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands.

EPSS

Процентиль: 99%
0.745
Высокий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-416