ID de Prueba:	1.3.6.1.4.1.25623.1.0.68821
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: exim
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: exim CVE-2010-4345 Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4345 1024859 http://www.securitytracker.com/id?1024859 20101213 Exim security issue in historical release http://www.securityfocus.com/archive/1/515172/100/0/threaded 42576 http://secunia.com/advisories/42576 42930 http://secunia.com/advisories/42930 43128 http://secunia.com/advisories/43128 43243 http://secunia.com/advisories/43243 45341 http://www.securityfocus.com/bid/45341 ADV-2010-3171 http://www.vupen.com/english/advisories/2010/3171 ADV-2010-3204 http://www.vupen.com/english/advisories/2010/3204 ADV-2011-0135 http://www.vupen.com/english/advisories/2011/0135 ADV-2011-0245 http://www.vupen.com/english/advisories/2011/0245 ADV-2011-0364 http://www.vupen.com/english/advisories/2011/0364 DSA-2131 http://www.debian.org/security/2010/dsa-2131 DSA-2154 http://www.debian.org/security/2011/dsa-2154 RHSA-2011:0153 http://www.redhat.com/support/errata/RHSA-2011-0153.html SUSE-SA:2010:059 http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00003.html USN-1060-1 http://www.ubuntu.com/usn/USN-1060-1 VU#758489 http://www.kb.cert.org/vuls/id/758489 [exim-dev] 20101207 Remote root vulnerability in Exim http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html [exim-dev] 20101209 Re: [Exim-maintainers] Remote root vulnerability in Exim http://lists.exim.org/lurker/message/20101209.172233.abcba158.en.html [exim-dev] 20101210 Re: Remote root vulnerability in Exim http://lists.exim.org/lurker/message/20101210.164935.385e04d0.en.html [oss-security] 20101210 Exim remote root http://openwall.com/lists/oss-security/2010/12/10/1 [oss-security] 20210504 21Nails: Multiple vulnerabilities in Exim http://www.openwall.com/lists/oss-security/2021/05/04/7 http://bugs.exim.org/show_bug.cgi?id=1044 http://www.cpanel.net/2010/12/critical-exim-security-update.html http://www.metasploit.com/modules/exploit/unix/smtp/exim4_string_format http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/ https://bugzilla.redhat.com/show_bug.cgi?id=662012
Copyright	Copyright (C) 2011 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.