CVE-2004-0399 - OpenCVE

Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
University Of Cambridge	Exim

Configuration 1 [-]

OR	cpe:2.3:a:university_of_cambridge:exim::::::::
	cpe:2.3:a:university_of_cambridge:exim:3.35:::::::*

References

Link	Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html
http://secunia.com/advisories/11558
http://www.debian.org/security/2004/dsa-501	Patch Vendor Advisory
http://www.debian.org/security/2004/dsa-502	Patch Vendor Advisory
http://www.guninski.com/exim1.html	Exploit Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/16079

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2004-05-12T04:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2004-04-13T00:00:00

Link: CVE-2004-0399

JSON object: View

NVD Information

Status : Modified

Published: 2004-07-07T04:00:00.000

Modified: 2017-07-11T01:30:08.087

Link: CVE-2004-0399

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-05-06T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "DSA-502", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"name": "DSA-501", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"name": "20040506 Buffer overflows in exim, yet still exim much better than windows", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"name": "11558", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/11558"}, {"name": "exim-requireverify-bo(16079)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"tags": ["x_refsource_MISC"], "url": "http://www.guninski.com/exim1.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0399", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "DSA-502", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2004/dsa-502"}, {"name": "DSA-501", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2004/dsa-501"}, {"name": "20040506 Buffer overflows in exim, yet still exim much better than windows", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"name": "11558", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/11558"}, {"name": "exim-requireverify-bo(16079)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"name": "http://www.guninski.com/exim1.html", "refsource": "MISC", "url": "http://www.guninski.com/exim1.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0399", "datePublished": "2004-05-12T04:00:00", "dateReserved": "2004-04-13T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:university_of_cambridge:exim:*:*:*:*:*:*:*:*", "matchCriteriaId": "FBA925D2-FF77-4C14-B2D9-B161BCD7D33C", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*", "matchCriteriaId": "0EBF5A2F-942A-4EA2-857F-713D841056CB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en la plia en Exim 3.35, y otras versiones anteriores a 4, cuando la opci\u00f3n sender_verify est\u00e1 activada, permite a atacantes remotos causar una denegaci\u00f3n de servicio y posiblemente ejecutar c\u00f3digo arbitrario durante la verificaci\u00f3n del remitente."}], "id": "CVE-2004-0399", "lastModified": "2017-07-11T01:30:08.087", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-07-07T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/11558"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.guninski.com/exim1.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}