FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-4345

This CVE name corresponds to:

Entered Topic
2011-01-08 exim -- local privilege escalation

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2010-4345 at cve.mitre.org

Details

Type Candidate
Name CVE-2010-4345
Phase Assigned(20101130)

Description

Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.

References

Source Reference
BUGTRAQ 20101213 Exim security issue in historical release
MLIST [exim-dev] 20101207 Remote root vulnerability in Exim
MLIST [exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim
MLIST [exim-dev] 20101210 Re: Remote root vulnerability in Exim
MLIST [oss-security] 20101210 Exim remote root
MISC http://www.metasploit.com/modules/exploit/unix/smtp/exim4_string_format
MISC http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/
CONFIRM http://bugs.exim.org/show_bug.cgi?id=1044
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=662012
CONFIRM http://www.cpanel.net/2010/12/critical-exim-security-update.html
DEBIAN DSA-2131
DEBIAN DSA-2154
REDHAT RHSA-2011:0153
SUSE SUSE-SA:2010:059
UBUNTU USN-1060-1
CERT-VN VU#758489
BID 45341
SECTRACK 1024859
SECUNIA 42576
SECUNIA 42930
SECUNIA 43128
SECUNIA 43243
VUPEN ADV-2010-3171
VUPEN ADV-2010-3204
VUPEN ADV-2011-0135
VUPEN ADV-2011-0245
VUPEN ADV-2011-0364

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.