Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0971Improper Restriction of Operations within the Bounds of a Memory Buffer in OF Cambridge Exim

4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 36.23%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
University OF Cambridge Exim
Timeline
PublishedJul 22
Latest updateApr 30

Description

Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

1
GHSA
GHSA-qxcj-688p-v8g5: Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a2022-04-30

💥Exploits & PoCs

1
Exploit-DB
Exim Buffer 1.6.2/1.6.51 - Local Overflow1997-07-21

📐Framework References

1
CAPEC
Overflow Variables and Tags