mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-14 20:08:44 +00:00
1.2 KiB
1.2 KiB
CVE-2017-16943
Description
The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands.
POC
Reference
- http://openwall.com/lists/oss-security/2017/11/25/2
- http://openwall.com/lists/oss-security/2017/11/25/3
- http://www.openwall.com/lists/oss-security/2021/05/04/7
- https://bugs.exim.org/show_bug.cgi?id=2199
- https://github.com/LetUsFsck/PoC-Exploit-Mirror/tree/master/CVE-2017-16944
- https://hackerone.com/reports/296991
Github
- https://github.com/00010111/exim_check
- https://github.com/ARPSyndicate/cvemon
- https://github.com/beraphin/CVE-2017-16943
- https://github.com/dbrumley/exim-examples
- https://github.com/jweny/pocassistdb
- https://github.com/lnick2023/nicenice
- https://github.com/qazbnm456/awesome-cve-poc
- https://github.com/xbl3/awesome-cve-poc_qazbnm456