Vulnerabilities > CVE-2020-28011 - Out-of-bounds Write vulnerability in Exim

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
exim
CWE-787
NVD
Published: 2021-05-06
Updated: 2021-05-10

Summary

Exim 4 before 4.94.2 allows Heap-based Buffer Overflow in queue_run via two sender options: -R and -S. This may cause privilege escalation from exim to root.

Vulnerable Configurations

Part Description Count
Application
Exim
115

Common Weakness Enumeration (CWE)

References