Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Exim src/dkim.c 'dkim_exim_verify_finish()'格式化字符串漏洞
Vulnerability Description
Exim是英国剑桥大学开发的一个运行于Unix系统中的开源消息传送代理(MTA),它主要负责邮件的路由、转发和投递。 Exim "dkim_exim_verify_finish()"在实现上存在格式字符串漏洞。此漏洞源于在处理包含格式字符串说明符时,src/dkim.c中的"dkim_exim_verify_finish()"函数中存在格式字符串错误,通过发送带有特制"DKIM-Signature:" 标头的电子邮件造成崩溃或内存破坏。
CVSS Information
N/A
Vulnerability Type
N/A