PT-2002-2293 · Exim · Exim

Published

2002-12-23

Updated

2017-10-10

CVE-2002-1381

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Exim versions 3.x through 3.36 Exim versions 4.x through 4.10

Description The issue is related to a format string vulnerability in the daemon.c file. This vulnerability allows administrative users to execute arbitrary code by modifying the pid file path value.

Recommendations For Exim versions 3.x through 3.36, update to a version that contains a fix for this issue. For Exim versions 4.x through 4.10, update to a version that contains a fix for this issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1381

Affected Products

Exim

PT-2002-2293 · Exim · Exim

CVE-2002-1381

Related Identifiers

Affected Products

References · 11