CVE-2010-4345

Executive Summary

Informations
Name	CVE-2010-4345	First vendor Publication	2010-12-14
Vendor	Cve	Last vendor Modification	2011-02-17

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	6.9	Attack Range	Local
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	3.4	Authentification	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4345

CWE : Common Weakness Enumeration

id	Name
CWE-264	Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

Type	Description	Count
Application	Exim Exim cpe:/a:exim:exim:4.72 cpe:/a:exim:exim:4.71 cpe:/a:exim:exim:4.70 cpe:/a:exim:exim:4.69 cpe:/a:exim:exim:4.68 cpe:/a:exim:exim:4.67 cpe:/a:exim:exim:4.66 cpe:/a:exim:exim:4.65 cpe:/a:exim:exim:4.64 cpe:/a:exim:exim:4.63 cpe:/a:exim:exim:4.62 cpe:/a:exim:exim:4.61 cpe:/a:exim:exim:4.60 cpe:/a:exim:exim:4.54 cpe:/a:exim:exim:4.53 cpe:/a:exim:exim:4.52 cpe:/a:exim:exim:4.51 cpe:/a:exim:exim:4.50 cpe:/a:exim:exim:4.44 cpe:/a:exim:exim:4.43 cpe:/a:exim:exim:4.42 cpe:/a:exim:exim:4.41 cpe:/a:exim:exim:4.40 cpe:/a:exim:exim:4.34 cpe:/a:exim:exim:4.33 cpe:/a:exim:exim:4.32 cpe:/a:exim:exim:4.31 cpe:/a:exim:exim:4.30 cpe:/a:exim:exim:4.24 cpe:/a:exim:exim:4.23 cpe:/a:exim:exim:4.22 cpe:/a:exim:exim:4.21 cpe:/a:exim:exim:4.20 cpe:/a:exim:exim:4.14 cpe:/a:exim:exim:4.12 cpe:/a:exim:exim:4.11 cpe:/a:exim:exim:4.10 cpe:/a:exim:exim:4.05 cpe:/a:exim:exim:4.04 cpe:/a:exim:exim:4.03 cpe:/a:exim:exim:4.02 cpe:/a:exim:exim:4.01 cpe:/a:exim:exim:4.00 cpe:/a:exim:exim:3.36 cpe:/a:exim:exim:3.35 cpe:/a:exim:exim:3.34 cpe:/a:exim:exim:3.33 cpe:/a:exim:exim:3.32 cpe:/a:exim:exim:3.31 cpe:/a:exim:exim:3.30 cpe:/a:exim:exim:3.22 cpe:/a:exim:exim:3.21 cpe:/a:exim:exim:3.20 cpe:/a:exim:exim:3.16 cpe:/a:exim:exim:3.15 cpe:/a:exim:exim:3.14 cpe:/a:exim:exim:3.13 cpe:/a:exim:exim:3.12 cpe:/a:exim:exim:3.11 cpe:/a:exim:exim:3.10 cpe:/a:exim:exim:3.03 cpe:/a:exim:exim:3.02 cpe:/a:exim:exim:3.01 cpe:/a:exim:exim:3.00 cpe:/a:exim:exim:2.12 cpe:/a:exim:exim:2.11 cpe:/a:exim:exim:2.10	67

ExploitDB Exploits

id	Description
2010-12-16	Exim4 <= 4.69 string_format Function Heap Buffer Overflow

Open Source Vulnerability Database (OSVDB)

id	Description
69860	Exim exim User Account Configuration File Directive Local Privilege Escalation

Metasploit Database

id	Description
2010-12-07	Exim4 <= 4.69 string_format Function Heap Buffer Overflow

Internal Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/45341
BUGTRAQ	http://www.securityfocus.com/archive/1/archive/1/515172/100/0/threaded
CERT-VN	http://www.kb.cert.org/vuls/id/758489
CONFIRM	http://bugs.exim.org/show_bug.cgi?id=1044 http://www.cpanel.net/2010/12/critical-exim-security-update.html https://bugzilla.redhat.com/show_bug.cgi?id=662012
DEBIAN	http://www.debian.org/security/2010/dsa-2131 http://www.debian.org/security/2011/dsa-2154
MISC	http://www.metasploit.com/modules/exploit/unix/smtp/exim4_string_format http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/
MLIST	http://lists.exim.org/lurker/message/20101209.172233.abcba158.en.html http://lists.exim.org/lurker/message/20101210.164935.385e04d0.en.html http://openwall.com/lists/oss-security/2010/12/10/1 http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html
REDHAT	http://www.redhat.com/support/errata/RHSA-2011-0153.html
SECTRACK	http://www.securitytracker.com/id?1024859
SECUNIA	http://secunia.com/advisories/42576 http://secunia.com/advisories/42930 http://secunia.com/advisories/43128 http://secunia.com/advisories/43243
SUSE	http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00003.html
UBUNTU	http://www.ubuntu.com/usn/USN-1060-1
VUPEN	http://www.vupen.com/english/advisories/2010/3171 http://www.vupen.com/english/advisories/2010/3204 http://www.vupen.com/english/advisories/2011/0135 http://www.vupen.com/english/advisories/2011/0245 http://www.vupen.com/english/advisories/2011/0364

Alert History

If you want to see full details history, please login or register.

Date	Informations
2013-05-10 23:37:37	Multiple Updates
2013-05-01 17:22:39	Multiple Updates
2013-05-01 13:28:07	Multiple Updates
2013-05-01 09:22:48	Multiple Updates
2013-05-01 05:38:32	Multiple Updates