PenTest/nmap
1
0
Fork 0
mirror of https://github.com/nmap/nmap.git synced 2026-01-24 15:19:03 +00:00
Code Issues Projects Releases Wiki Activity

Move the brief summary of both vulns into the summary sentence so people see them at a glance from the nsedoc script lists

Browse Source
This commit is contained in:
fyodor
2011-06-29 01:34:24 +00:00
parent 536e00ea42
commit 511adcb497
1 changed files with 9 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
scripts/smtp-vuln-cve2010-4344.nse
View File

@@ -1,10 +1,14 @@
description = [[
Exploits a heap overflow within versions of Exim prior to version 4.69.
The vulnerability allows remote attackers to execute arbitrary code with
the privileges of the Exim daemon (CVE-2010-4344). If the exploit fails
then the Exim smtpd child will be killed (heap corruption).
Checks for and/or exploits a heap overflow within versions of Exim
prior to version 4.69 (CVE-2010-4344) and a privilege escalation
vulnerability in Exim 4.72 and prior (CVE-2010-4345).
The script will also check for a privilege escalation vulnerability that
The heap overflow vulnerability allows remote attackers to execute
arbitrary code with the privileges of the Exim daemon
(CVE-2010-4344). If the exploit fails then the Exim smtpd child will
be killed (heap corruption).
The script also checks for a privilege escalation vulnerability that
affects Exim version 4.72 and prior. The vulnerability allows the exim
user to gain root privileges by specifying an alternate configuration
file using the -C option (CVE-2010-4345).