Showing 1 - 3 of 3

CVE-2012-5671

Status Candidate

Overview

Heap-based buffer overflow in the dkim_exim_query_dns_txt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and acl_smtp_connect and acl_smtp_rcpt are not set to "warn control = dkim_disable_verify," allows remote attackers to execute arbitrary code via an email from a malicious DNS server.

Related Files

Gentoo Linux Security Advisory 201401-32: Posted Jan 27, 2014; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201401-32 - Multiple vulnerabilities were found in Exim, the worst of which leading to remote execution of arbitrary code with root privileges. Versions less than 4.80.1 are affected.; tags | advisory, remote, arbitrary, root, vulnerability; systems | linux, gentoo; advisories | CVE-2010-2023, CVE-2010-2024, CVE-2010-4344, CVE-2010-4345, CVE-2011-0017, CVE-2011-1407, CVE-2011-1764, CVE-2012-5671; SHA-256 | e3a4e4748cd68f2fd685d0f69f6b2dbf2c95867f71a5d365a61fe7544703c801; Download | Favorite | View

Debian Security Advisory 2566-1: Posted Oct 26, 2012; Authored by Debian | Site debian.org; Debian Linux Security Advisory 2566-1 - It was discovered that Exim, a mail transport agent, is not properly handling the decoding of DNS records for DKIM. Specifically, crafted records can yield to a heap-based buffer overflow. An attacker can exploit this flaw to execute arbitrary code.; tags | advisory, overflow, arbitrary; systems | linux, debian; advisories | CVE-2012-5671; SHA-256 | db45c689499a88f8489df5e20ca7f2308465812b000bd38146acd009a2dd42a1; Download | Favorite | View

Ubuntu Security Notice USN-1618-1: Posted Oct 26, 2012; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 1618-1 - It was discovered that Exim incorrectly handled DKIM DNS decoding. This flaw could allow a remote attacker to execute arbitrary code.; tags | advisory, remote, arbitrary; systems | linux, ubuntu; advisories | CVE-2012-5671; SHA-256 | 1aa6092f2eedee2d304f571946cd33139c425f5a72ba8acf5eae714670a9a625; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
Ubuntu 85 files
indoushka 77 files
Jasper Nota 25 files
Gentoo 22 files
Debian 19 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,096)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,553)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,689)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,482)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,736)
UNIX (9,435)
UnixWare (187)
Windows (6,671)
Other

CVE-2012-5671

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems