Back to search
CVE-2005-0021
Published: Jan 6, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple buffer overflows in Exim before 4.43 may allow attackers to execute arbitrary code via (1) an IPv6 address with more than 8 components, as demonstrated using the -be command line option, which triggers an overflow in the host_aton function, or (2) the -bh command line option or dnsdb PTR lookup, which triggers an overflow in the dns_build_reverse function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20050107 Exim host_aton() Buffer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
VU#132992
third-party-advisory
x_refsource_CERT-VN
DSA-635
vendor-advisory
x_refsource_DEBIAN
http://ftp6.us.freebsd.org/pub/mail/exim/ChangeLogs/ChangeLog-4.44
x_refsource_CONFIRM
DSA-637
vendor-advisory
x_refsource_DEBIAN
20050114 Exim dns_buld_reverse() Buffer Overflow Vulnerability
third-party-advisory
x_refsource_IDEFENSE
RHSA-2005:025
vendor-advisory
x_refsource_REDHAT
GLSA-200501-23
vendor-advisory
x_refsource_GENTOO
[exim] 20050104 2 smallish security issues
mailing-list
x_refsource_MLIST
oval:org.mitre.oval:def:10347
vdb-entry
signature
x_refsource_OVAL
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now