Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Exim 4 before 4.94.2 has Improper Neutralization of Line Delimiters, relevant in non-default configurations that enable Delivery Status Notification (DSN). Certain uses of ORCPT= can place a newline into a spool header file, and indirectly allow unauthenticated remote attackers to execute arbitrary commands as root.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Exim 安全漏洞
Vulnerability Description
Exim是一个运行于Unix系统中的开源消息传送代理(MTA),它主要负责邮件的路由、转发和投递。 exim4 (Debian package) 存在安全漏洞,该漏洞源于对spool_read_header函数中用户提供的输入的验证不足。以下产品及版本受到影响:exim4 (Debian package): 4.10-0.srh20.1, 4.10-0.srh20.2, 4.10-0.srh20.3, 4.10-0.srh20.4, 4.10-0.srh20.5, 4.10-0.srh20.6, 4.10
CVSS Information
N/A
Vulnerability Type
N/A