Описание
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 4.84~RC1-3ubuntu2 |
| esm-infra-legacy/trusty | ignored | |
| lucid | not-affected | code not present |
| precise | not-affected | code not present |
| saucy | ignored | end of life |
| trusty | ignored | |
| trusty/esm | ignored | |
| upstream | released | 4.82.1-1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPE ...
The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
EPSS
6.8 Medium
CVSS2