Lucene search

MitreCVE-2002-0274

HistoryApr 02, 2003 - 5:00 a.m.

CVE-2002-0274

2003-04-0205:00:00

mitre

web.nvd.nist.gov

exim

buffer overflow

command line

security vulnerability

privileges escalation

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

Percentile

5.1%

JSON

Exim 3.34 and earlier may allow local users to gain privileges via a buffer overflow in long -C (configuration file) and other command line arguments.

Affected configurations

Nvd

Node

university_of_cambridgeeximRange≤3.34

VendorProductVersionCPE
university_of_cambridgeexim*cpe:2.3:a:university_of_cambridge:exim:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
university_of_cambridge	exim	*	cpe:2.3:a:university_of_cambridge:exim::::::::

References

marc.info/?l=bugtraq&m=101362618118598&w=2

www.iss.net/security_center/static/8194.php

www.redhat.com/support/errata/RHSA-2002-208.html

www.securityfocus.com/bid/4096

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-0274