Computer Security
[EN] securityvulns.ru no-pyccku


exim format string vulnerability
Published:08.05.2011
Source:
SecurityVulns ID:11655
Type:remote
Threat Level:
9/10
Description:Format string vulnerability on DKIM data obtained from DNS.
Affected:EXIM : exim 4.75
CVE:CVE-2011-1764 (Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 2232-1] exim4 security update (08.05.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod