This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:exim:exim:4.05
Detail
VendorEximFirst view 2010-12-14
ProductEximLast view 2011-10-04
Version4.05TypeApplication
Edition 
Language 
Update 
 
CPE Productcpe:/a:exim:exim

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.5 2011-10-04 CVE-2011-1764 Network Low None Requ...
6.9 2011-02-01 CVE-2011-0017 Local Medium None Requ...
6.9 2010-12-14 CVE-2010-4345 Local Medium None Requ...
9.3 2010-12-14 CVE-2010-4344 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
20% (1)CWE-264Permissions, Privileges, and Access Controls
20% (1)CWE-134Uncontrolled Format String
20% (1)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
20% (1)CWE-59Improper Link Resolution Before File Access ('Link Following')
20% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:22059RHSA-2010:0970: exim security update (Critical)
oval:org.mitre.oval:def:13170USN-1032-1 -- exim4 vulnerability
oval:org.mitre.oval:def:23061ELSA-2010:0970: exim security update (Critical)
oval:org.mitre.oval:def:21735RHSA-2011:0153: exim security update (Moderate)
oval:org.mitre.oval:def:12720DSA-2131-1 exim4 -- arbitrary code execution
Hide | Show 5 More...
idName
oval:org.mitre.oval:def:22839ELSA-2011:0153: exim security update (Moderate)
oval:org.mitre.oval:def:12931DSA-2154-1 exim4 -- privilege escalation
oval:org.mitre.oval:def:12692DSA-2154-2 exim4 -- privilege escalation / regression
oval:org.mitre.oval:def:14030USN-1130-1 -- exim4 vulnerability
oval:org.mitre.oval:def:12038DSA-2232-1 exim4 -- format string vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
72156Exim src/dkim.c dkim_exim_verify_finish() Function DKIM-Signature Header Form...
70696Exim log.c open_log() Function Local Privilege Escalation
69860Exim exim User Account Configuration File Directive Local Privilege Escalation
69685Exim string_format Function Remote Overflow

ExploitDB Exploits

idDescription
16925Exim4 <= 4.69 string_format Function Heap Buffer Overflow

Metasploit Exploits

idDescription
2010-12-07Exim4 string_format Function Heap Buffer Overflow

OpenVAS Exploits

idDescription
2012-12-13Name : SuSE Update for exim openSUSE-SU-2012:1404-1 (exim)
File : nvt/gb_suse_2012_1404_1.nasl
2012-07-30Name : CentOS Update for exim CESA-2011:0153 centos4 x86_64
File : nvt/gb_CESA-2011_0153_exim_centos4_x86_64.nasl
2012-07-30Name : CentOS Update for exim CESA-2011:0153 centos5 x86_64
File : nvt/gb_CESA-2011_0153_exim_centos5_x86_64.nasl
2012-07-30Name : CentOS Update for exim CESA-2010:0970 centos4 x86_64
File : nvt/gb_CESA-2010_0970_exim_centos4_x86_64.nasl
2011-08-09Name : CentOS Update for exim CESA-2011:0153 centos5 i386
File : nvt/gb_CESA-2011_0153_exim_centos5_i386.nasl
Hide | Show 14 More...
idDescription
2011-08-03Name : FreeBSD Ports: exim
File : nvt/freebsd_exim3.nasl
2011-08-03Name : Debian Security Advisory DSA 2232-1 (exim4)
File : nvt/deb_2232_1.nasl
2011-05-23Name : Fedora Update for exim FEDORA-2011-7047
File : nvt/gb_fedora_2011_7047_exim_fc14.nasl
2011-05-23Name : Fedora Update for exim FEDORA-2011-7059
File : nvt/gb_fedora_2011_7059_exim_fc13.nasl
2011-05-17Name : Ubuntu Update for exim4 USN-1130-1
File : nvt/gb_ubuntu_USN_1130_1.nasl
2011-03-05Name : exim -- local privilege escalation
File : nvt/freebsd_exim2.nasl
2011-02-11Name : Ubuntu Update for exim4 vulnerabilities USN-1060-1
File : nvt/gb_ubuntu_USN_1060_1.nasl
2011-01-31Name : CentOS Update for exim CESA-2011:0153 centos4 i386
File : nvt/gb_CESA-2011_0153_exim_centos4_i386.nasl
2011-01-31Name : CentOS Update for exim CESA-2010:0970 centos4 i386
File : nvt/gb_CESA-2010_0970_exim_centos4_i386.nasl
2011-01-24Name : FreeBSD Ports: exim
File : nvt/freebsd_exim1.nasl
2011-01-21Name : RedHat Update for exim RHSA-2011:0153-01
File : nvt/gb_RHSA-2011_0153-01_exim.nasl
2011-01-04Name : SuSE Update for exim SUSE-SA:2010:059
File : nvt/gb_suse_2010_059.nasl
2010-12-28Name : Ubuntu Update for exim4 vulnerability USN-1032-1
File : nvt/gb_ubuntu_USN_1032_1.nasl
2010-12-28Name : RedHat Update for exim RHSA-2010:0970-01
File : nvt/gb_RHSA-2010_0970-01_exim.nasl

Nessus® Vulnerability Scanner

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-101211.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-110207.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_exim-110506.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-738.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_4_exim-110506.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-01-28Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201401-32.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2010-0970.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2011-0153.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20101210_exim_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2012-08-01Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20110117_exim_on_SL4_x.nasl - Type : ACT_GATHER_INFO
2011-06-13Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1130-1.nasl - Type : ACT_GATHER_INFO
2011-05-19Name : The remote Fedora host is missing a security update.
File : fedora_2011-7111.nasl - Type : ACT_GATHER_INFO
2011-05-18Name : The remote Fedora host is missing a security update.
File : fedora_2011-7047.nasl - Type : ACT_GATHER_INFO
2011-05-18Name : The remote Fedora host is missing a security update.
File : fedora_2011-7059.nasl - Type : ACT_GATHER_INFO
2011-05-16Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_36594c547be711e098380022156e8794.nasl - Type : ACT_GATHER_INFO
2011-05-10Name : The remote mail server is potentially affected by a format string vulnerability.
File : exim_4_76.nasl - Type : ACT_ATTACK
2011-05-09Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2232.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_1_exim-101211.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_exim-101211.nasl - Type : ACT_GATHER_INFO
2011-05-05Name : The remote openSUSE host is missing a security update.
File : suse_11_2_exim-110207.nasl - Type : ACT_GATHER_INFO
2011-02-14Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_44ccfab0356411e08e810022190034c0.nasl - Type : ACT_GATHER_INFO
2011-02-11Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-1060-1.nasl - Type : ACT_GATHER_INFO
2011-02-03Name : The remote mail server is potentially affected by a local privilege escalatio...
File : exim_4_74.nasl - Type : ACT_GATHER_INFO
2011-01-31Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2154.nasl - Type : ACT_GATHER_INFO
2011-01-28Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2010-0970.nasl - Type : ACT_GATHER_INFO