Signature Detail
Short Name |
SMTP:MAL:EXIM4-HEADER |
|---|---|
Severity |
High |
Recommended |
No |
Category |
SMTP |
Keywords |
Exim4 Malformed Header |
Release Date |
2011/01/06 |
Update Number |
1846 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
SMTP: Exim4 Malformed Header
This signature detects attempts to exploit a known remote code-execution vulnerability in Exim4. Attackers can exploit this issue to execute code as the"exim" user and can leverage this issue to launch further attacks. Versions prior to Exim 4.70 are vulnerable.
Extended Description
Exim is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute code as the 'exim' user. Attackers can leverage this issue to launch further attacks. Versions prior to Exim 4.70 are vulnerable.
Affected Products
- Avaya Aura System Manager 6.1
- Avaya Aura System Manager 6.1.1
- Avaya Aura System Manager 6.1.2
- Avaya Aura System Manager 6.1.3
- Avaya Aura System Manager 6.1 Sp1
- Avaya Aura System Manager 6.1 SP2
- cPanel
- Debian Linux 5.0
- Debian Linux 5.0 Alpha
- Debian Linux 5.0 Amd64
- Debian Linux 5.0 Arm
- Debian Linux 5.0 Armel
- Debian Linux 5.0 Hppa
- Debian Linux 5.0 Ia-32
- Debian Linux 5.0 Ia-64
- Debian Linux 5.0 M68k
- Debian Linux 5.0 Mips
- Debian Linux 5.0 Mipsel
- Debian Linux 5.0 Powerpc
- Debian Linux 5.0 S/390
- Debian Linux 5.0 Sparc
- Red Hat Enterprise Linux 5.3.Z Server
- Red Hat Enterprise Linux 5.4.Z Server
- Red Hat Enterprise Linux 5 Server
- Red Hat Enterprise Linux Desktop Version 4
- Red Hat Enterprise Linux AS 4
- Red Hat Enterprise Linux AS 4.7.Z
- Red Hat Enterprise Linux Desktop 5 Client
- Red Hat Enterprise Linux ES 4
- Red Hat Enterprise Linux ES 4.7.Z
- Red Hat Enterprise Linux WS 4
- SuSE openSUSE 11.1
- SuSE openSUSE 11.2
- SuSE openSUSE 11.3
- University of Cambridge Exim 1.6.2
- University of Cambridge Exim 1.6.51
- University of Cambridge Exim 2.0.0 X
- University of Cambridge Exim 3.0.0
- University of Cambridge Exim 3.0.0 X
- University of Cambridge Exim 3.11.0
- University of Cambridge Exim 3.12.0
- University of Cambridge Exim 3.13.0
- University of Cambridge Exim 3.14.0
- University of Cambridge Exim 3.15.0
- University of Cambridge Exim 3.16.0
- University of Cambridge Exim 3.17.0
- University of Cambridge Exim 3.18.0
- University of Cambridge Exim 3.19.0
- University of Cambridge Exim 3.20.0
- University of Cambridge Exim 3.21.0
- University of Cambridge Exim 3.22.0
- University of Cambridge Exim 3.3.0
- University of Cambridge Exim 3.30.0
- University of Cambridge Exim 3.3.0 1
- University of Cambridge Exim 3.3.0 2
- University of Cambridge Exim 3.31.0
- University of Cambridge Exim 3.32.0
- University of Cambridge Exim 3.33.0
- University of Cambridge Exim 3.34.0
- University of Cambridge Exim 3.35.0
- University of Cambridge Exim 3.36.0
- University of Cambridge Exim 3.952.0
- University of Cambridge Exim 4.10.0
- University of Cambridge Exim 4.20.0
- University of Cambridge Exim 4.21.0
- University of Cambridge Exim 4.32.0
- University of Cambridge Exim 4.33.0
- University of Cambridge Exim 4.34.0
- University of Cambridge Exim 4.40.0
- University of Cambridge Exim 4.41.0
- University of Cambridge Exim 4.42.0
- University of Cambridge Exim 4.43.0
- University of Cambridge Exim 4.52.0
- University of Cambridge Exim 4.60.0
- University of Cambridge Exim 4.66
- University of Cambridge Exim 4.69
References
- BugTraq: 45308
- CVE: CVE-2010-4344
- URL: http://www.kb.cert.org/vuls/id/682457
- URL: http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html
- URL: http://www.exim.org/
- URL: http://www.cpanel.net/2010/12/exim-remote-memory-corruption-vulnerability-notification-cve-2010-4344.html
- URL: http://twitter.com/#!/hdmoore/status/12912834514001920