1. CVE-Search
  2. CVE-2003-0743
ID CVE-2003-0743
Summary Heap-based buffer overflow in smtp_in.c for Exim 3 (exim3) before 3.36 and Exim 4 (exim4) before 4.21 may allow remote attackers to execute arbitrary code via an invalid (1) HELO or (2) EHLO argument with a large number of spaces followed by a NULL character and a newline, which is not properly trimmed before the "(no argument given)" string is appended to the buffer.
References
Vulnerable Configurations
  • cpe:2.3:a:university_of_cambridge:exim:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.3:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.3:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.3.1:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.3.2:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.3.2:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.11:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.11:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.12:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.12:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.13:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.13:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.14:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.14:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.15:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.15:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.16:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.16:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.17:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.17:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.18:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.18:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.19:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.19:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.20:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.20:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.21:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.21:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.22:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.22:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.30:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.30:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.31:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.31:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.32:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.32:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.33:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.33:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.34:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.34:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:3.36:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:3.36:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:4.10:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:4.10:*:*:*:*:*:*:*
  • cpe:2.3:a:university_of_cambridge:exim:4.20:*:*:*:*:*:*:*
    cpe:2.3:a:university_of_cambridge:exim:4.20:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2016 - 02:37)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bugtraq 20030901 exim remote heap overflow, probably not exploitable
conectiva CLA-2003:735
confirm
debian DSA-376
mlist
  • [Exim] 20030814 Minor security bug
  • [Exim] 20030815 Minor security bug
vuln-dev 20030903 Re: exim remote heap overflow, probably not exploitable
Last major update 18-10-2016 - 02:37
Published 20-10-2003 - 04:00
Last modified 18-10-2016 - 02:37
Back to Top