This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:exim:exim:4.05
Detail
VendorEximFirst view 2010-12-14
ProductEximLast view 2014-09-04
Version4.05TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:exim:exim

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
4.62014-09-04CVE-2014-2972LocalLowNone Requ...
6.82014-09-04CVE-2014-2957NetworkMediumNone Requ...
7.52011-10-04CVE-2011-1764NetworkLowNone Requ...
6.92011-02-01CVE-2011-0017LocalMediumNone Requ...
6.92010-12-14CVE-2010-4345LocalMediumNone Requ...
Hide | Show 1 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
9.32010-12-14CVE-2010-4344NetworkMediumNone Requ...

CWE : Common Weakness Enumeration

%idName
28% (2)CWE-20Improper Input Validation
14% (1)CWE-264Permissions, Privileges, and Access Controls
14% (1)CWE-189Numeric Errors
14% (1)CWE-134Uncontrolled Format String
14% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 1 More...
%idName
14% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:22059RHSA-2010:0970: exim security update (Critical)
oval:org.mitre.oval:def:13170USN-1032-1 -- exim4 vulnerability
oval:org.mitre.oval:def:23061ELSA-2010:0970: exim security update (Critical)
oval:org.mitre.oval:def:21735RHSA-2011:0153: exim security update (Moderate)
oval:org.mitre.oval:def:12720DSA-2131-1 exim4 -- arbitrary code execution
Hide | Show 5 More...
idName
oval:org.mitre.oval:def:22839ELSA-2011:0153: exim security update (Moderate)
oval:org.mitre.oval:def:12931DSA-2154-1 exim4 -- privilege escalation
oval:org.mitre.oval:def:12692DSA-2154-2 exim4 -- privilege escalation / regression
oval:org.mitre.oval:def:14030USN-1130-1 -- exim4 vulnerability
oval:org.mitre.oval:def:12038DSA-2232-1 exim4 -- format string vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
72156Exim src/dkim.c dkim_exim_verify_finish() Function DKIM-Signature Header Form...
70696Exim log.c open_log() Function Local Privilege Escalation
69860Exim exim User Account Configuration File Directive Local Privilege Escalation
69685Exim string_format Function Remote Overflow

ExploitDB Exploits

idDescription
16925Exim4 <= 4.69 string_format Function Heap Buffer Overflow

Metasploit Exploits

idDescription
2010-12-07Exim4 string_format Function Heap Buffer Overflow

OpenVAS Exploits

idDescription
2012-12-13Name : SuSE Update for exim openSUSE-SU-2012:1404-1 (exim)
File : nvt/gb_suse_2012_1404_1.nasl
2012-07-30Name : CentOS Update for exim CESA-2011:0153 centos4 x86_64
File : nvt/gb_CESA-2011_0153_exim_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for exim CESA-2011:0153 centos5 x86_64
File : nvt/gb_CESA-2011_0153_exim_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for exim CESA-2010:0970 centos4 x86_64
File : nvt/gb_CESA-2010_0970_exim_centos4_x86_64.nasl
2011-08-09Name : CentOS Update for exim CESA-2011:0153 centos5 i386
File : nvt/gb_CESA-2011_0153_exim_centos5_i386.nasl
Hide | Show 14 More...
idDescription
2011-08-03Name : FreeBSD Ports: exim
File : nvt/freebsd_exim3.nasl
2011-08-03Name : Debian Security Advisory DSA 2232-1 (exim4)
File : nvt/deb_2232_1.nasl
2011-05-23Name : Fedora Update for exim FEDORA-2011-7047
File : nvt/gb_fedora_2011_7047_exim_fc14.nasl
2011-05-23Name : Fedora Update for exim FEDORA-2011-7059
File : nvt/gb_fedora_2011_7059_exim_fc13.nasl
2011-05-17Name : Ubuntu Update for exim4 USN-1130-1
File : nvt/gb_ubuntu_USN_1130_1.nasl
2011-03-05Name : exim -- local privilege escalation
File : nvt/freebsd_exim2.nasl
2011-02-11Name : Ubuntu Update for exim4 vulnerabilities USN-1060-1
File : nvt/gb_ubuntu_USN_1060_1.nasl
2011-01-31Name : CentOS Update for exim CESA-2011:0153 centos4 i386
File : nvt/gb_CESA-2011_0153_exim_centos4_i386.nasl
2011-01-31Name : CentOS Update for exim CESA-2010:0970 centos4 i386
File : nvt/gb_CESA-2010_0970_exim_centos4_i386.nasl
2011-01-24Name : FreeBSD Ports: exim
File : nvt/freebsd_exim1.nasl
2011-01-21Name : RedHat Update for exim RHSA-2011:0153-01
File : nvt/gb_RHSA-2011_0153-01_exim.nasl
2011-01-04Name : SuSE Update for exim SUSE-SA:2010:059
File : nvt/gb_suse_2010_059.nasl
2010-12-28Name : Ubuntu Update for exim4 vulnerability USN-1032-1
File : nvt/gb_ubuntu_USN_1032_1.nasl
2010-12-28Name : RedHat Update for exim RHSA-2010:0970-01
File : nvt/gb_RHSA-2010_0970-01_exim.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-10-12Name : The remote Amazon Linux AMI host is missing a security update.
File : ala_ALAS-2014-395.nasl - Type : ACT_GATHER_INFO
2014-08-12Name : The remote openSUSE host is missing a security update.
File : openSUSE-2014-482.nasl - Type : ACT_GATHER_INFO
2014-08-07Name : The remote mail server is potentially affected by a data insertion vulnerabil...
File : exim_4_83.nasl - Type : ACT_GATHER_INFO
2014-08-04Name : The remote Fedora host is missing a security update.
File : fedora_2014-8803.nasl - Type : ACT_GATHER_INFO
2014-08-04Name : The remote Fedora host is missing a security update.
File : fedora_2014-8865.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-101211.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-110207.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-110506.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-738.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_exim-110506.nasl - Type : ACT_GATHER_INFO
2014-05-29Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_f99a4686e69411e39032000c2980a9f3.nasl - Type : ACT_GATHER_INFO
2014-01-28Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201401-32.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0970.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0153.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101210_exim_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110117_exim_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2011-06-13Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1130-1.nasl - Type : ACT_GATHER_INFO
2011-05-19Name : The remote Fedora host is missing a security update.
File : fedora_2011-7111.nasl - Type : ACT_GATHER_INFO
2011-05-18Name : The remote Fedora host is missing a security update.
File : fedora_2011-7047.nasl - Type : ACT_GATHER_INFO
2011-05-18Name : The remote Fedora host is missing a security update.
File : fedora_2011-7059.nasl - Type : ACT_GATHER_INFO
2011-05-16Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_36594c547be711e098380022156e8794.nasl - Type : ACT_GATHER_INFO
2011-05-10Name : The remote mail server is potentially affected by a format string vulnerability.
File : exim_4_76.nasl - Type : ACT_ATTACK
2011-05-09Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2232.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_exim-101211.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_exim-101211.nasl - Type : ACT_GATHER_INFO