Vulnerabilities > Exim > Medium

DATE CVE VULNERABILITY TITLE RISK
2012-10-31 CVE-2012-5671 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Exim
Heap-based buffer overflow in the dkim_exim_query_dns_txt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and acl_smtp_connect and acl_smtp_rcpt are not set to "warn control = dkim_disable_verify," allows remote attackers to execute arbitrary code via an email from a malicious DNS server.
network
exim CWE-119
6.8
2011-02-02 CVE-2011-0017 Improper Input Validation vulnerability in Exim
The open_log function in log.c in Exim 4.72 and earlier does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.
local
exim CWE-20
6.9
2010-06-07 CVE-2010-2024 Race Condition vulnerability in Exim
transports/appendfile.c in Exim before 4.72, when MBX locking is enabled, allows local users to change permissions of arbitrary files or create arbitrary files, and cause a denial of service or possibly gain privileges, via a symlink attack on a lockfile in /tmp/.
local
exim CWE-362
4.4
2010-06-07 CVE-2010-2023 Race Condition vulnerability in Exim
transports/appendfile.c in Exim before 4.72, when a world-writable sticky-bit mail directory is used, does not verify the st_nlink field of mailbox files, which allows local users to cause a denial of service or possibly gain privileges by creating a hard link to another user's file.
local
exim CWE-362
4.4