From 511adcb49777d79003d7fbff81ca27fb1136ff28 Mon Sep 17 00:00:00 2001 From: fyodor Date: Wed, 29 Jun 2011 01:34:24 +0000 Subject: [PATCH] Move the brief summary of both vulns into the summary sentence so people see them at a glance from the nsedoc script lists --- scripts/smtp-vuln-cve2010-4344.nse | 14 +++++++++----- 1 file changed, 9 insertions(+), 5 deletions(-) diff --git a/scripts/smtp-vuln-cve2010-4344.nse b/scripts/smtp-vuln-cve2010-4344.nse index 72b320411..8202565bf 100644 --- a/scripts/smtp-vuln-cve2010-4344.nse +++ b/scripts/smtp-vuln-cve2010-4344.nse @@ -1,10 +1,14 @@ description = [[ -Exploits a heap overflow within versions of Exim prior to version 4.69. -The vulnerability allows remote attackers to execute arbitrary code with -the privileges of the Exim daemon (CVE-2010-4344). If the exploit fails -then the Exim smtpd child will be killed (heap corruption). +Checks for and/or exploits a heap overflow within versions of Exim +prior to version 4.69 (CVE-2010-4344) and a privilege escalation +vulnerability in Exim 4.72 and prior (CVE-2010-4345). -The script will also check for a privilege escalation vulnerability that +The heap overflow vulnerability allows remote attackers to execute +arbitrary code with the privileges of the Exim daemon +(CVE-2010-4344). If the exploit fails then the Exim smtpd child will +be killed (heap corruption). + +The script also checks for a privilege escalation vulnerability that affects Exim version 4.72 and prior. The vulnerability allows the exim user to gain root privileges by specifying an alternate configuration file using the -C option (CVE-2010-4345).