Vulnerability Details : CVE-2010-4345
Public exploit exists!
Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
Threat overview for CVE-2010-4345
Top countries where our scanners detected CVE-2010-4345
Top open port discovered on systems with this issue
80
IPs affected by CVE-2010-4345 2,039
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2010-4345!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
CVE-2010-4345 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Exim Privilege Escalation Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Exim allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands.
Added on
2022-03-25
Action due date
2022-04-15
Exploit prediction scoring system (EPSS) score for CVE-2010-4345
Probability of exploitation activity in the next 30 days: 0.12%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 45 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2010-4345
-
Exim4 string_format Function Heap Buffer Overflow
Disclosure Date: 2010-12-07First seen: 2020-04-26exploit/unix/smtp/exim4_string_formatThis module exploits a heap buffer overflow within versions of Exim prior to version 4.69. By sending a specially crafted message, an attacker can corrupt the heap and execute arbitrary code with the privileges of the Exim daemon. The root cause is that no check i
CVSS scores for CVE-2010-4345
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
6.9
|
MEDIUM | AV:L/AC:M/Au:N/C:C/I:C/A:C |
3.4
|
10.0
|
NIST |
CWE ids for CVE-2010-4345
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2010-4345
-
http://www.vupen.com/english/advisories/2011/0245
Webmail | OVH- OVH
-
http://lists.exim.org/lurker/message/20101209.172233.abcba158.en.html
Re: [exim-dev] [Exim-maintainers] Remote root vulnerability in EximPatch
-
http://www.debian.org/security/2010/dsa-2131
Debian -- Security Information -- DSA-2131-1 exim4
-
http://www.cpanel.net/2010/12/critical-exim-security-update.html
404 Error - cPanel
-
http://www.vupen.com/english/advisories/2011/0135
Webmail | OVH- OVH
-
http://www.vupen.com/english/advisories/2011/0364
Webmail | OVH- OVH
-
http://www.vupen.com/english/advisories/2010/3171
Webmail | OVH- OVHVendor Advisory
-
http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/
Exim code-execution bug, now with root access • The Register
-
http://www.kb.cert.org/vuls/id/758489
VU#758489 - Exim alternate configuration privilege escalation vulnerabilityUS Government Resource
-
http://www.metasploit.com/modules/exploit/unix/smtp/exim4_string_format
Exim4 string_format Function Heap Buffer Overflow
-
https://bugzilla.redhat.com/show_bug.cgi?id=662012
662012 – (CVE-2010-4345) CVE-2010-4345 exim privilege escalationPatch
-
http://www.openwall.com/lists/oss-security/2021/05/04/7
oss-security - 21Nails: Multiple vulnerabilities in Exim
-
http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00003.html
[security-announce] SUSE Security Announcement: exim (SUSE-SA:2010:059)
-
http://www.securityfocus.com/archive/1/515172/100/0/threaded
SecurityFocus
-
http://www.securityfocus.com/bid/45341
Exim ALT_CONFIG_ROOT_ONLY 'exim' User Local Privilege Escalation Vulnerability
-
http://www.debian.org/security/2011/dsa-2154
Debian -- Security Information -- DSA-2154-1 exim4
-
http://openwall.com/lists/oss-security/2010/12/10/1
oss-security - Exim remote root
-
http://www.exim.org/lurker/message/20101207.215955.bb32d4f2.en.html
[exim-dev] Remote root vulnerability in EximVendor Advisory
-
http://bugs.exim.org/show_bug.cgi?id=1044
Bug 1044 – CVE-2010-4345 exim privilege escalationPatch
-
http://www.redhat.com/support/errata/RHSA-2011-0153.html
Support
-
http://www.securitytracker.com/id?1024859
Exim Configuration File Capability Lets Local Users Gain Elevated Privileges - SecurityTracker
-
http://www.vupen.com/english/advisories/2010/3204
Webmail | OVH- OVHVendor Advisory
-
http://lists.exim.org/lurker/message/20101210.164935.385e04d0.en.html
Re: [exim-dev] Remote root vulnerability in Exim
-
http://www.ubuntu.com/usn/USN-1060-1
USN-1060-1: Exim vulnerabilities | Ubuntu security notices
Products affected by CVE-2010-4345
- cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.10:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.20:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.68:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.67:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.60:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.54:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.34:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.41:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.42:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.64:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.63:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.51:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.70:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.69:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.62:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.61:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.44:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.43:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.21:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.33:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.50:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.23:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.22:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.32:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.40:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.66:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.65:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.53:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.52:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.31:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.30:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.24:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.11:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.12:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.00:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.36:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.21:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.20:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.10:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.03:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.02:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.01:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.31:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.30:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.22:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.12:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.11:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:2.11:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:2.10:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.04:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.03:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.33:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.32:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.14:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.13:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.00:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:2.12:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.14:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.05:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.35:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.34:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.16:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.15:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.02:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:3.01:*:*:*:*:*:*:*
- cpe:2.3:a:exim:exim:4.71:*:*:*:*:*:*:*