7.8
CVE-2010-4345
- EPSS 17.79%
- Veröffentlicht 14.12.2010 16:00:04
- Zuletzt bearbeitet 16.06.2026 23:24:36
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Debian ≫ Debian Linux Version5.0
Canonical ≫ Ubuntu Linux Version6.06
Canonical ≫ Ubuntu Linux Version8.04 SwEdition-
Canonical ≫ Ubuntu Linux Version9.10
Canonical ≫ Ubuntu Linux Version10.04 SwEdition-
Canonical ≫ Ubuntu Linux Version10.10
25.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog
Exim Privilege Escalation Vulnerability
SchwachstelleExim allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands.
BeschreibungApply updates per vendor instructions.
Erforderliche Maßnahmen| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 17.79% | 0.968 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.9 | 3.4 | 10 |
AV:L/AC:M/Au:N/C:C/I:C/A:C
|
| 134c704f-9b21-4f2e-91b3-4a467353bcc0 | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')
The product constructs all or part of a command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended command when it is sent to a downstream component.
http://secunia.com/advisories/43243
http://www.ubuntu.com/usn/USN-1060-1
http://www.vupen.com/english/advisories/2011/0364
http://lists.exim.org/lurker/message/20101210.164935.385e04d0.en.html
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00003.html
http://openwall.com/lists/oss-security/2010/12/10/1
http://secunia.com/advisories/42576
http://www.debian.org/security/2010/dsa-2131
http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html
http://www.metasploit.com/modules/exploit/unix/smtp/exim4_string_format
http://www.openwall.com/lists/oss-security/2021/05/04/7
http://www.securityfocus.com/archive/1/515172/100/0/threaded
http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/
http://www.vupen.com/english/advisories/2010/3171
http://www.vupen.com/english/advisories/2010/3204
http://bugs.exim.org/show_bug.cgi?id=1044
http://lists.exim.org/lurker/message/20101209.172233.abcba158.en.html
http://secunia.com/advisories/42930
http://secunia.com/advisories/43128
http://www.cpanel.net/2010/12/critical-exim-security-update.html
http://www.debian.org/security/2011/dsa-2154
http://www.kb.cert.org/vuls/id/758489
http://www.redhat.com/support/errata/RHSA-2011-0153.html
http://www.securityfocus.com/bid/45341
http://www.securitytracker.com/id?1024859
http://www.vupen.com/english/advisories/2011/0135
http://www.vupen.com/english/advisories/2011/0245
https://bugzilla.redhat.com/show_bug.cgi?id=662012
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2010-4345