CVE-2017-1000369

Exim supports the use of multiple "-p" command line arguments which are malloc()'ed and never free()'ed, used in conjunction with other issues allows attackers to cause arbitrary code execution. This affects exim version 4.89 and earlier. Please note that at this time upstream has released a patch (commit 65e061b76867a9ea7aeeb535341b790b90ae6c21), but it is not known if a new point release is available that addresses this issue at this time.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 51%
VendorProductVersion
eximexim
𝑥
≤ 4.87.1
eximexim
4.88
eximexim
4.88:rc1
eximexim
4.88:rc2
eximexim
4.88:rc3
eximexim
4.88:rc4
eximexim
4.88:rc5
eximexim
4.88:rc6
eximexim
4.89
eximexim
4.89:rc1
eximexim
4.89:rc2
eximexim
4.89:rc3
eximexim
4.89:rc4
eximexim
4.89:rc5
eximexim
4.89:rc6
eximexim
4.89:rc7
debiandebian_linux
8.0
debiandebian_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
exim4
bullseye
4.94.2-7+deb11u3
fixed
bullseye (security)
4.94.2-7+deb11u4
fixed
bookworm
4.96-15+deb12u5
fixed
bookworm (security)
4.96-15+deb12u5
fixed
sid
4.98-2
fixed
trixie
4.98-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
exim4
zesty
Fixed 4.88-5ubuntu1.1
released
yakkety
Fixed 4.87-3ubuntu1.2
released
xenial
Fixed 4.86.2-2ubuntu2.2
released
trusty
Fixed 4.82-3ubuntu2.3
released
Common Weakness Enumeration
References
http://www.debian.org/security/2017/dsa-3888
http://www.securityfocus.com/bid/99252
http://www.securitytracker.com/id/1038779
https://access.redhat.com/security/cve/CVE-2017-1000369
https://github.com/Exim/exim/commit/65e061b76867a9ea7aeeb535341b790b90ae6c21
https://security.gentoo.org/glsa/201709-19
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt
http://www.debian.org/security/2017/dsa-3888
http://www.securityfocus.com/bid/99252
http://www.securitytracker.com/id/1038779
https://access.redhat.com/security/cve/CVE-2017-1000369
https://github.com/Exim/exim/commit/65e061b76867a9ea7aeeb535341b790b90ae6c21
https://security.gentoo.org/glsa/201709-19
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt