CVE Vulnerabilities

CVE-2014-2972

Published: Sep 04, 2014 | Modified: Dec 03, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

expand.c in Exim before 4.83 expands mathematical comparisons twice, which allows local users to gain privileges and execute arbitrary commands via a crafted lookup value.

Affected Software

Name Vendor Start Version End Version
Exim Exim * 4.82.1 (including)
Exim Exim 4.00 (including) 4.00 (including)
Exim Exim 4.01 (including) 4.01 (including)
Exim Exim 4.02 (including) 4.02 (including)
Exim Exim 4.03 (including) 4.03 (including)
Exim Exim 4.04 (including) 4.04 (including)
Exim Exim 4.05 (including) 4.05 (including)
Exim Exim 4.10 (including) 4.10 (including)
Exim Exim 4.11 (including) 4.11 (including)
Exim Exim 4.12 (including) 4.12 (including)
Exim Exim 4.14 (including) 4.14 (including)
Exim Exim 4.20 (including) 4.20 (including)
Exim Exim 4.21 (including) 4.21 (including)
Exim Exim 4.22 (including) 4.22 (including)
Exim Exim 4.23 (including) 4.23 (including)
Exim Exim 4.24 (including) 4.24 (including)
Exim Exim 4.30 (including) 4.30 (including)
Exim Exim 4.31 (including) 4.31 (including)
Exim Exim 4.32 (including) 4.32 (including)
Exim Exim 4.33 (including) 4.33 (including)
Exim Exim 4.34 (including) 4.34 (including)
Exim Exim 4.40 (including) 4.40 (including)
Exim Exim 4.41 (including) 4.41 (including)
Exim Exim 4.42 (including) 4.42 (including)
Exim Exim 4.43 (including) 4.43 (including)
Exim Exim 4.44 (including) 4.44 (including)
Exim Exim 4.50 (including) 4.50 (including)
Exim Exim 4.51 (including) 4.51 (including)
Exim Exim 4.52 (including) 4.52 (including)
Exim Exim 4.53 (including) 4.53 (including)
Exim Exim 4.54 (including) 4.54 (including)
Exim Exim 4.60 (including) 4.60 (including)
Exim Exim 4.61 (including) 4.61 (including)
Exim Exim 4.62 (including) 4.62 (including)
Exim Exim 4.63 (including) 4.63 (including)
Exim Exim 4.64 (including) 4.64 (including)
Exim Exim 4.65 (including) 4.65 (including)
Exim Exim 4.66 (including) 4.66 (including)
Exim Exim 4.67 (including) 4.67 (including)
Exim Exim 4.68 (including) 4.68 (including)
Exim Exim 4.69 (including) 4.69 (including)
Exim Exim 4.70 (including) 4.70 (including)
Exim Exim 4.71 (including) 4.71 (including)
Exim Exim 4.72 (including) 4.72 (including)
Exim Exim 4.73 (including) 4.73 (including)
Exim Exim 4.74 (including) 4.74 (including)
Exim Exim 4.75 (including) 4.75 (including)
Exim Exim 4.76 (including) 4.76 (including)
Exim Exim 4.77 (including) 4.77 (including)
Exim Exim 4.80 (including) 4.80 (including)
Exim Exim 4.80.1 (including) 4.80.1 (including)
Exim Exim 4.82 (including) 4.82 (including)

References