Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Exim 安全漏洞
Vulnerability Description
Exim是英国剑桥大学开发的一个运行于Unix系统中的开源消息传送代理(MTA),它主要负责邮件的路由、转发和投递。 Exim 4.83之前版本的expand.c文件中存在安全漏洞,该漏洞源于程序没有正确处理传递到数学比较函数中的参数扩展。本地攻击者可通过特制的‘lookup’值利用该漏洞获取权限,执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A