CVSS: 7.5EPSS: 19%CPEs: 4EXPL: 2CVE-2001-0690 – Exim 3.x - Format String
https://notcve.org/view.php?id=CVE-2001-0690
Format string vulnerability in exim (3.22-10 in Red Hat, 3.12 in Debian and 3.16 in Conectiva) in batched SMTP mode allows a remote attacker to execute arbitrary code via format strings in SMTP mail headers. • https://www.exploit-db.com/exploits/20900 http://archives.neohapsis.com/archives/bugtraq/2001-06/0041.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000402 http://www.debian.org/security/2001/dsa-058 http://www.redhat.com/support/errata/RHSA-2001-078.html http://www.securityfocus.com/bid/2828 https://exchange.xforce.ibmcloud.com/vulnerabilities/6671 •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-1999-0971 – Exim Buffer 1.6.2/1.6.51 - Local Overflow
https://notcve.org/view.php?id=CVE-1999-0971
Buffer overflow in Exim allows local users to gain root privileges via a long :include: option in a .forward file. • https://www.exploit-db.com/exploits/20333 http://www.securityfocus.com/archive/1/7301 •