// For flags

CVE-2014-2957

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The dmarc_process function in dmarc.c in Exim before 4.82.1, when EXPERIMENTAL_DMARC is enabled, allows remote attackers to execute arbitrary code via the From header in an email, which is passed to the expand_string function.

La función dmarc_process en dmarc.c en Exim anterior a 4.82.1, cuando EXPERIMENTAL_DMARC está habilitado, permite a atacantes remotos ejecutar código arbitrario a través de la cabecera Desde en un email, lo cual es pasado a la función expand_string.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-04-21 CVE Reserved
  • 2014-09-04 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
<= 4.82
Search vendor "Exim" for product "Exim" and version " <= 4.82"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.00
Search vendor "Exim" for product "Exim" and version "4.00"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.01
Search vendor "Exim" for product "Exim" and version "4.01"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.02
Search vendor "Exim" for product "Exim" and version "4.02"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.03
Search vendor "Exim" for product "Exim" and version "4.03"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.04
Search vendor "Exim" for product "Exim" and version "4.04"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.05
Search vendor "Exim" for product "Exim" and version "4.05"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.10
Search vendor "Exim" for product "Exim" and version "4.10"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.11
Search vendor "Exim" for product "Exim" and version "4.11"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.12
Search vendor "Exim" for product "Exim" and version "4.12"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.14
Search vendor "Exim" for product "Exim" and version "4.14"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.20
Search vendor "Exim" for product "Exim" and version "4.20"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.21
Search vendor "Exim" for product "Exim" and version "4.21"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.22
Search vendor "Exim" for product "Exim" and version "4.22"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.23
Search vendor "Exim" for product "Exim" and version "4.23"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.24
Search vendor "Exim" for product "Exim" and version "4.24"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.30
Search vendor "Exim" for product "Exim" and version "4.30"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.31
Search vendor "Exim" for product "Exim" and version "4.31"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.32
Search vendor "Exim" for product "Exim" and version "4.32"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.33
Search vendor "Exim" for product "Exim" and version "4.33"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.34
Search vendor "Exim" for product "Exim" and version "4.34"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.40
Search vendor "Exim" for product "Exim" and version "4.40"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.41
Search vendor "Exim" for product "Exim" and version "4.41"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.42
Search vendor "Exim" for product "Exim" and version "4.42"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.43
Search vendor "Exim" for product "Exim" and version "4.43"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.44
Search vendor "Exim" for product "Exim" and version "4.44"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.50
Search vendor "Exim" for product "Exim" and version "4.50"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.51
Search vendor "Exim" for product "Exim" and version "4.51"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.52
Search vendor "Exim" for product "Exim" and version "4.52"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.53
Search vendor "Exim" for product "Exim" and version "4.53"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.54
Search vendor "Exim" for product "Exim" and version "4.54"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.60
Search vendor "Exim" for product "Exim" and version "4.60"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.61
Search vendor "Exim" for product "Exim" and version "4.61"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.62
Search vendor "Exim" for product "Exim" and version "4.62"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.63
Search vendor "Exim" for product "Exim" and version "4.63"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.64
Search vendor "Exim" for product "Exim" and version "4.64"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.65
Search vendor "Exim" for product "Exim" and version "4.65"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.66
Search vendor "Exim" for product "Exim" and version "4.66"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.67
Search vendor "Exim" for product "Exim" and version "4.67"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.68
Search vendor "Exim" for product "Exim" and version "4.68"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.69
Search vendor "Exim" for product "Exim" and version "4.69"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.70
Search vendor "Exim" for product "Exim" and version "4.70"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.71
Search vendor "Exim" for product "Exim" and version "4.71"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.72
Search vendor "Exim" for product "Exim" and version "4.72"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.73
Search vendor "Exim" for product "Exim" and version "4.73"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.74
Search vendor "Exim" for product "Exim" and version "4.74"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.75
Search vendor "Exim" for product "Exim" and version "4.75"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.76
Search vendor "Exim" for product "Exim" and version "4.76"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.77
Search vendor "Exim" for product "Exim" and version "4.77"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.80
Search vendor "Exim" for product "Exim" and version "4.80"
-
Affected
Exim
Search vendor "Exim"
Exim
Search vendor "Exim" for product "Exim"
4.80.1
Search vendor "Exim" for product "Exim" and version "4.80.1"
-
Affected