Executive Summary

Informations
Name CVE-2024-39929 First vendor Publication 2024-07-04
Vendor Cve Last vendor Modification 2025-07-10

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector :
Cvss Base Score N/A Attack Range N/A
Cvss Impact Score N/A Attack Complexity N/A
Cvss Expoit Score N/A Authentication N/A
Calculate full CVSS 2.0 Vectors scores

Detail

Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass a $mime_filename extension-blocking protection mechanism, and potentially deliver executable attachments to the mailboxes of end users.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39929

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 141

Sources (Detail)

https://bugs.exim.org/show_bug.cgi?id=3099#c4
https://git.exim.org/exim.git/commit/1b3209b0577a9327ebb076f3b32b8a159c253f7b
https://git.exim.org/exim.git/commit/6ce5c70cff8989418e05d01fd2a57703007a6357
https://github.com/Exim/exim/compare/exim-4.98-RC2...exim-4.98-RC3
https://www.rfc-editor.org/rfc/rfc2231.txt
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
Date Informations
2025-07-11 05:20:58
  • Multiple Updates
2025-03-18 21:22:05
  • Multiple Updates
2024-11-25 09:24:17
  • Multiple Updates
2024-07-09 21:27:36
  • Multiple Updates
2024-07-05 17:27:24
  • Multiple Updates
2024-07-04 21:27:24
  • First insertion