Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
exim exim 4.75 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-1407
The DKIM implementation in Exim 4.7x prior to 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote malicious users to execute arbitrary code or access a filesystem via a crafted identity.
Exim Exim 4.74
Exim Exim 4.75
Exim Exim 4.72
Exim Exim 4.73
Exim Exim 4.70
Exim Exim 4.71
NA
CVE-2012-5671
Heap-based buffer overflow in the dkim_exim_query_dns_txt function in dkim.c in Exim 4.70 up to and including 4.80, when DKIM support is enabled and acl_smtp_connect and acl_smtp_rcpt are not set to "warn control = dkim_disable_verify," allows remote malicious users to ...
Exim Exim 4.76
Exim Exim 4.77
Exim Exim 4.72
Exim Exim 4.73
Exim Exim 4.74
Exim Exim 4.75
Exim Exim 4.70
Exim Exim 4.71
Exim Exim 4.80
NA
CVE-2014-2972
expand.c in Exim prior to 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.
Exim Exim 4.77
Exim Exim 4.76
Exim Exim 4.69
Exim Exim 4.68
Exim Exim 4.61
Exim Exim 4.60
Exim Exim 4.42
Exim Exim 4.41
Exim Exim 4.24
Exim Exim 4.23
Exim Exim 4.10
Exim Exim 4.05
Exim Exim 4.75
Exim Exim 4.74
Exim Exim 4.67
Exim Exim 4.66
Exim Exim 4.54
Exim Exim 4.53
Exim Exim 4.40
Exim Exim 4.34
Exim Exim 4.22
Exim Exim 4.21
NA
CVE-2014-2957
The dmarc_process function in dmarc.c in Exim prior to 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote malicious users to execute arbitrary code via the From header in an email, which is passed to the expand_string function.
Exim Exim 4.77
Exim Exim 4.76
Exim Exim 4.75
Exim Exim 4.74
Exim Exim 4.60
Exim Exim 4.54
Exim Exim 4.53
Exim Exim 4.52
Exim Exim 4.24
Exim Exim 4.23
Exim Exim 4.22
Exim Exim 4.21
Exim Exim 4.20
Exim Exim 4.80.1
Exim Exim 4.72
Exim Exim 4.70
Exim Exim 4.65
Exim Exim 4.63
Exim Exim 4.61
Exim Exim 4.51
Exim Exim 4.44
Exim Exim 4.32
NA
CVE-2011-1764
Format string vulnerability in the dkim_exim_verify_finish function in src/dkim.c in Exim prior to 4.76 might allow remote malicious users to execute arbitrary code or cause a denial of service (daemon crash) via format string specifiers in data used in DKIM logging, as demonstra...
Exim Exim 4.50
Exim Exim 4.44
Exim Exim 4.63
Exim Exim 4.62
Exim Exim 4.61
Exim Exim 4.21
Exim Exim 4.22
Exim Exim 4.41
Exim Exim 4.40
Exim Exim 4.03
Exim Exim 4.02
Exim Exim 3.32
Exim Exim 3.31
Exim Exim 3.14
Exim Exim 3.13
Exim Exim 2.12
Exim Exim 2.11
Exim Exim 4.74
Exim Exim
Exim Exim 4.51
Exim Exim 4.30
Exim Exim 4.64
2 Nmap scripts
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started