BDU:2018-00395

Scores

EPSS

0.000none0.0%

0%20%40%60%80%100%

Percentile: 0.0%

CVSS

9.8critical3.x

0246810

CVSS Score: 9.8/10

All CVSS Scores

CVSS 3.x

9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS 2.0

10.0

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Description

Уязвимость функции base64d компонента STMP listener почтового сервера Exim вызвана переполнением буфера при обработке данных, размер которых не кратен 4 (4n + 3). Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, выполнить произвольный код с использованием специально сформированных данных в команде «AUTH» и манипуляции с именем хоста отправителя в команде «EHLO»

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.

Learn more about Scaner-VS 7

Sources

bdu

Related Vulnerabilities

CVE-2018-6789

Exploits

Exploit ID: BDU:2018-00395

Source: bdu_exploit

URL: https://bdu.fstec.ru/vul

Exploit ID: 44571

Source: exploitdb

URL: https://www.exploit-db.com/exploits/44571

Exploit ID: 45671

Source: exploitdb

URL: https://www.exploit-db.com/exploits/45671

Exploit ID: CVE-2018-6789

Source: github-poc

URL: https://github.com/thistehneisen/CVE-2018-6789-Python3

Reference Links

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6789

http://www.debian.org/security/dsa-4110/

http://www.securitytracker.com/id/1040461

http://www.securityfocus.com/bid/103049

http://openwall.com/lists/oss-security/2018/02/10/2

http://www.openwall.com/lists/oss-security/2018/02/07/2

http://www.securityfocus.com/bid/103049

http://www.securitytracker.com/id/1040461

https://devco.re/blog/2018/03/06/exim-off-by-one-RCE-exploiting-CVE-2018-6789-en/

https://exim.org/static/doc/security/CVE-2018-6789.txt

https://git.exim.org/exim.git/commit/cf3cd306062a08969c41a1cdd32c6855f1abecf1

https://lists.debian.org/debian-lts-announce/2018/02/msg00009.html

https://www.debian.org/security/2018/dsa-4110

http://www.opennet.ru/opennews/art.shtml?num=48219

https://nvd.nist.gov/vuln/detail/CVE-2018-6789

https://security-tracker.debian.org/tracker/CVE-2018-6789

https://wiki.astralinux.ru/astra-linux-se81-bulletin-20200429SE81

https://www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv

https://www.exploit-db.com/exploits/44571/

Recommendations

Source: bdu

Использование рекомендаций:
Для Exim:
Обновление программного обеспечения до 4.90.1 или более поздней версии

Для Astra Linux:
Обновление программного обеспечения (пакета exim4) до 4.84.2-2+deb8u5 или более поздней версии

Для Debian GNU/Linux:
https://www.debian.org/security/2018/dsa-4110
https://lists.debian.org/debian-lts-announce/2018/02/msg00009.html

URL: https://bdu.fstec.ru/vul/2018-00395

Vulnerable Software (5)

Type: Configuration

Vendor: gnu general public license

Product: exim

Operating System: debian gnu/linux 8

Trait:

{  "version_end_excluding": "4.90.1"}

Source: bdu

Type: Configuration

Vendor: gnu general public license

Product: exim

Operating System: debian gnu/linux 7

Trait:

{  "version_end_excluding": "4.90.1"}

Source: bdu

Type: Configuration

Vendor: gnu general public license

Product: exim

Operating System: astra 8.1

Trait:

{  "version_end_excluding": "4.90.1"}

Source: bdu

Type: Configuration

Vendor: gnu general public license

Product: exim

Operating System: debian gnu/linux 9

Trait:

{  "version_end_excluding": "4.90.1"}

Source: bdu

Type: Configuration

Vendor: gnu general public license

Product: exim

Operating System: astra 1.6

Trait:

{  "version_end_excluding": "4.90.1"}

Source: bdu

End of list

Russian Vulnerability Scanner Database

BDU:2018-00395

Scores

EPSS

CVSS

All CVSS Scores

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact

Vector Breakdown

CVSS

Attack Vector

Attack Complexity

Authentication

Confidentiality Impact

Integrity Impact

Availability Impact

Description

Scaner-VS 7 — a modern vulnerability management solution

Sources

Related Vulnerabilities

Exploits

Reference Links

Recommendations

Vulnerable Software (5)