Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0021Improper Restriction of Operations within the Bounds of a Memory Buffer in OF Cambridge Exim

10 documents8 sources
Severity
7.2HIGHNVD
EPSS
2.8%
top 13.82%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Debian Exim4University OF Cambridge Exim
Timeline
PublishedMay 2
Latest updateMay 1

Description

Multiple buffer overflows in Exim before 4.43 may allow attackers to execute arbitrary code via (1) an IPv6 address with more than 8 components, as demonstrated using the -be command line option, which triggers an overflow in the host_aton function, or (2) the -bh command line option or dnsdb PTR lookup, which triggers an overflow in the dns_build_reverse function.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

debiandebian/exim4< exim4 4.34-10 (bookworm)

Patches

Patch: www.kb.cert.orgPatch: www.redhat.comPatch: www.kb.cert.org

🔴Vulnerability Details

2
GHSA
GHSA-4wq7-f94f-64w2: Multiple buffer overflows in Exim before 42022-05-01
OSV
CVE-2005-0021: Multiple buffer overflows in Exim before 42005-05-02

💥Exploits & PoCs

3
Exploit-DB
Exim 4.41 - 'dns_build_reverse' Local Read Emails2005-05-25
Exploit-DB
Linux Kernel 2.4 - 'uselib()' Local Privilege Escalation (2)2005-01-27
Exploit-DB
Exim 4.41 - 'dns_build_reverse' Local Buffer Overflow2005-01-15

📋Vendor Advisories

3
Ubuntu
exim4 vulnerabilities2005-01-07
Red Hat
security flaw2005-01-04
Debian
CVE-2005-0021: exim4 - Multiple buffer overflows in Exim before 4.43 may allow attackers to execute arb...2005

💬Community

1
Bugzilla
CVE-2005-0021 security flaw2018-08-16