CNVD-2017-15806 — Vulnetix

CNVD-2017-15806 PUBLISHED

Exim是英国剑桥大学开发的一个运行于Unix系统中的开源消息传送代理（MTA），它主要负责邮件的路由、转发和投递。 Exim 4.89及之前的版本中存在安全漏洞。攻击者可利用该漏洞执行任意代码。

Affected Products

Vendor	Product	Versions
n/a	n/a	n/a

Exploit Intelligence

Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
Trinadh465/linux-4.1.15_CVE-2017-1000371 (github-poc)
CVE-2017-1000367 (github-poc)
CVE-2017-1000367 (github-poc)
own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
own implementation of the CVE-2017-1000367 sudo privilege escalation vulnerability in python (github-poc)
homjxi0e/CVE-2017-1000367 (github-poc)
homjxi0e/CVE-2017-1000367 (github-poc)
c0d3z3r0/sudo-CVE-2017-1000367 (github-poc)
c0d3z3r0/sudo-CVE-2017-1000367 (github-poc)

…and 9 more exploits

Timeline

May 26, 2017 PoC Published
Jun 21, 2017 CVE ID Reserved
Jul 21, 2017 CVE Published
Apr 20, 2026 Distribution Patch
Apr 20, 2026 Security Advisory
Apr 20, 2026 Security Advisory

References

https://github.com/Exim/exim/commit/65e061b76867a9ea7aeeb535341b790b90ae6c21 url
1038779 vdb
99252 vdb
https://access.redhat.com/security/cve/CVE-2017-1000369 url
GLSA-201709-19 vendor-advisory
https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt url
DSA-3888 vendor-advisory

Open in Interactive Console →

$ Console Community · 100/wk Open console ›