CVE-2002-1381

High

7.2/10

Summary

Format string vulnerability in daemon.c for Exim 4.x through 4.10, and 3.x through 3.36, allows exim administrative users to execute arbitrary code by modifying the pid_file_path value.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Dec 23, 2002

CVE-2002-1381

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS