Test ID:	1.3.6.1.4.1.25623.1.0.67536
Category:	Fedora Local Security Checks
Title:	Fedora Core 12 FEDORA-2010-9506 (exim)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to exim announced via advisory FEDORA-2010-9506. Update Information: This update fixes the following security flaws: * CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling * CVE-2010-2024 exim: race condition when MBX locking is enabled References: [ 1 ] Bug #600093 - CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling https://bugzilla.redhat.com/show_bug.cgi?id=600093 [ 2 ] Bug #600097 - CVE-2010-2024 exim: race condition when MBX locking is enabled https://bugzilla.redhat.com/show_bug.cgi?id=600097 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update exim' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2010-9506 Risk factor : Medium CVSS Score: 4.4
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2023 BugTraq ID: 40451 http://www.securityfocus.com/bid/40451 Bugtraq: 20100603 Multiple vulnerabilities in Exim (Google Search) http://www.securityfocus.com/archive/1/511653/100/0/threaded http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042587.html http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042613.html http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0079.html http://lists.exim.org/lurker/message/20100524.175925.9a69f755.en.html http://secunia.com/advisories/40019 http://secunia.com/advisories/40123 http://secunia.com/advisories/43243 SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html http://www.ubuntu.com/usn/USN-1060-1 http://www.vupen.com/english/advisories/2010/1402 http://www.vupen.com/english/advisories/2011/0364 XForce ISS Database: exim-mail-directory-priv-escalation(59043) https://exchange.xforce.ibmcloud.com/vulnerabilities/59043 Common Vulnerability Exposure (CVE) ID: CVE-2010-2024 BugTraq ID: 40454 http://www.securityfocus.com/bid/40454 XForce ISS Database: exim-mbx-symlink(59042) https://exchange.xforce.ibmcloud.com/vulnerabilities/59042
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.