Описание
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | dkim code not present |
| devel | not-affected | 4.76-1ubuntu1 |
| hardy | not-affected | dkim code not present |
| lucid | released | 4.71-3ubuntu1.2 |
| maverick | released | 4.72-1ubuntu1.2 |
| natty | released | 4.74-1ubuntu1.1 |
| upstream | released | 4.76 |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
Format string vulnerability in the dkim_exim_verify_finish function in ...
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
EPSS
7.5 High
CVSS2