CVE-2018-6789
Description
An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.
Risk Information
Base Score
9.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
86.439
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Exim4 4.82-3ubuntu2.2 for Ubuntu 14.04 LTS (x64) exim4_4.82-3ubuntu2.4_all.deb | Linux |
| Exim4 4.86.2-2ubuntu2.1 for Ubuntu 16.04 LTS (x64) exim4_4.86.2-2ubuntu2.3_all.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.82-3ubuntu2.4_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.82-3ubuntu2.4_amd64.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.89-5ubuntu1.3_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.89-5ubuntu1.3_amd64.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.86.2-2ubuntu2.3_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-heavy_4.86.2-2ubuntu2.3_amd64.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.82-3ubuntu2.4_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.82-3ubuntu2.4_amd64.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.89-5ubuntu1.3_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.89-5ubuntu1.3_amd64.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.86.2-2ubuntu2.3_i386.deb | Linux |
| Exim is a mail transport agent (USN-3565-1) exim4-daemon-light_4.86.2-2ubuntu2.3_amd64.deb | Linux |
| exim4 security update(DSA-4110-1) exim4_4.84.2-2+deb8u5_all.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234