CVE-2011-1764 — Use of Externally-Controlled Format String in Exim

CWE-134 — Use of Externally-Controlled Format String8 documents7 sources

Severity

7.5HIGHNVD

EPSS

4.7%

top 10.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Debian Exim4 Exim

Timeline

PublishedOct 5

Latest updateMay 17

Description

Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstrated by an identity field containing a % (percent) character.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶debiandebian/exim4< exim4 4.75-3 (bookworm)

▶NVDexim/exim4.75+69

Patches

Patch: bugs.debian.org ↗Patch: bugs.exim.org ↗Patch: git.exim.org ↗

🔴Vulnerability Details

GHSA

GHSA-mhvp-9557-5gxf: Format string vulnerability in the dkim_exim_verify_finish function in src/dkim↗2022-05-17

▶

OSV

CVE-2011-1764: Format string vulnerability in the dkim_exim_verify_finish function in src/dkim↗2011-10-05

▶

📋Vendor Advisories

Ubuntu

Exim vulnerability↗2011-05-10

▶

Red Hat

exim: improper format string handling in DKIM signatures↗2011-04-29

▶

Debian

CVE-2011-1764: exim4 - Format string vulnerability in the dkim_exim_verify_finish function in src/dkim....↗2011

▶

💬Community

Bugzilla

CVE-2011-1407 CVE-2011-1764 exim various flaws [epel-6]↗2011-05-17

▶

Bugzilla

CVE-2011-1764 exim: improper format string handling in DKIM signatures↗2011-05-05

▶