Test ID:	1.3.6.1.4.1.25623.1.0.69698
Category:	Fedora Local Security Checks
Title:	Fedora Core 13 FEDORA-2011-7059 (exim)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to exim announced via advisory FEDORA-2011-7059. Update Information: This update fixes two remote execution exploits in DKIM processing code (CVE-2011-1407, CVE-2011-1764). References: [ 1 ] Bug #702474 - CVE-2011-1764 exim: improper format string handling in DKIM signatures https://bugzilla.redhat.com/show_bug.cgi?id=702474 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update exim' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2011-7059 Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1407 BugTraq ID: 47836 http://www.securityfocus.com/bid/47836 Debian Security Information: DSA-2236 (Google Search) http://www.debian.org/security/2011/dsa-2236 https://lists.exim.org/lurker/message/20110509.091632.daed0206.en.html https://lists.exim.org/lurker/message/20110512.102909.8136175a.en.html http://www.ubuntu.com/usn/USN-1135-1 Common Vulnerability Exposure (CVE) ID: CVE-2011-1764 Debian Security Information: DSA-2232 (Google Search) http://www.debian.org/security/2011/dsa-2232 http://secunia.com/advisories/51155 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html Common Vulnerability Exposure (CVE) ID: CVE-2010-2023 BugTraq ID: 40451 http://www.securityfocus.com/bid/40451 Bugtraq: 20100603 Multiple vulnerabilities in Exim (Google Search) http://www.securityfocus.com/archive/1/511653/100/0/threaded http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042587.html http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042613.html http://archives.neohapsis.com/archives/fulldisclosure/2010-06/0079.html http://lists.exim.org/lurker/message/20100524.175925.9a69f755.en.html http://secunia.com/advisories/40019 http://secunia.com/advisories/40123 http://secunia.com/advisories/43243 SuSE Security Announcement: SUSE-SR:2010:014 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-08/msg00001.html http://www.ubuntu.com/usn/USN-1060-1 http://www.vupen.com/english/advisories/2010/1402 http://www.vupen.com/english/advisories/2011/0364 XForce ISS Database: exim-mail-directory-priv-escalation(59043) https://exchange.xforce.ibmcloud.com/vulnerabilities/59043 Common Vulnerability Exposure (CVE) ID: CVE-2010-2024 BugTraq ID: 40454 http://www.securityfocus.com/bid/40454 XForce ISS Database: exim-mbx-symlink(59042) https://exchange.xforce.ibmcloud.com/vulnerabilities/59042
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.