Test ID:	1.3.6.1.4.1.25623.1.0.69766
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Ports: exim
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory.
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: exim CVE-2011-1407 The DKIM implementation in Exim 4.7x before 4.76 permits matching for DKIM identities to apply to lookup items, instead of only strings, which allows remote attackers to execute arbitrary code or access a filesystem via a crafted identity. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1764 Debian Security Information: DSA-2232 (Google Search) http://www.debian.org/security/2011/dsa-2232 http://secunia.com/advisories/51155 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2011-1407 BugTraq ID: 47836 http://www.securityfocus.com/bid/47836 Debian Security Information: DSA-2236 (Google Search) http://www.debian.org/security/2011/dsa-2236 https://lists.exim.org/lurker/message/20110509.091632.daed0206.en.html https://lists.exim.org/lurker/message/20110512.102909.8136175a.en.html http://www.ubuntu.com/usn/USN-1135-1
Copyright	Copyright (C) 2011 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.