Описание
The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 4.60-3ubuntu3.3 |
| devel | not-affected | 4.76-1ubuntu1 |
| hardy | not-affected | 4.69-2ubuntu0.3 |
| lucid | released | 4.71-3ubuntu1.3 |
| maverick | released | 4.72-1ubuntu1.3 |
| natty | released | 4.74-1ubuntu1.2 |
| upstream | released | 4.76 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity.
The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity.
The DKIM implementation in Exim 4.7x before 4.76 permits matching for ...
The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity.
EPSS
7.5 High
CVSS2