CVE-2004-0399 - Vulnerability Details - OpenCVE

Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
University Of Cambridge	Exim

Configuration 1 [-]

OR	cpe:2.3:a:university_of_cambridge:exim::::::::
	cpe:2.3:a:university_of_cambridge:exim:3.35:::::::*

No data.

References

Link	Providers
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html
http://secunia.com/advisories/11558
http://www.debian.org/security/2004/dsa-501
http://www.debian.org/security/2004/dsa-502
http://www.guninski.com/exim1.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/16079

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-05-12T04:00:00

Updated: 2024-08-08T00:17:14.639Z

Reserved: 2004-04-13T00:00:00

Link: CVE-2004-0399

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2004-07-07T04:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2004-0399

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-05-06T00:00:00", "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "DSA-502", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"name": "DSA-501", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"name": "20040506 Buffer overflows in exim, yet still exim much better than windows", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"name": "11558", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/11558"}, {"name": "exim-requireverify-bo(16079)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"tags": ["x_refsource_MISC"], "url": "http://www.guninski.com/exim1.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-0399", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "DSA-502", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2004/dsa-502"}, {"name": "DSA-501", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2004/dsa-501"}, {"name": "20040506 Buffer overflows in exim, yet still exim much better than windows", "refsource": "FULLDISC", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"name": "11558", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/11558"}, {"name": "exim-requireverify-bo(16079)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"name": "http://www.guninski.com/exim1.html", "refsource": "MISC", "url": "http://www.guninski.com/exim1.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:17:14.639Z"}, "title": "CVE Program Container", "references": [{"name": "DSA-502", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"name": "DSA-501", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"name": "20040506 Buffer overflows in exim, yet still exim much better than windows", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"name": "11558", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/11558"}, {"name": "exim-requireverify-bo(16079)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.guninski.com/exim1.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-0399", "datePublished": "2004-05-12T04:00:00", "dateReserved": "2004-04-13T00:00:00", "dateUpdated": "2024-08-08T00:17:14.639Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:university_of_cambridge:exim:*:*:*:*:*:*:*:*", "matchCriteriaId": "FBA925D2-FF77-4C14-B2D9-B161BCD7D33C", "vulnerable": true}, {"criteria": "cpe:2.3:a:university_of_cambridge:exim:3.35:*:*:*:*:*:*:*", "matchCriteriaId": "0EBF5A2F-942A-4EA2-857F-713D841056CB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer basado en la plia en Exim 3.35, y otras versiones anteriores a 4, cuando la opci\u00f3n sender_verify est\u00e1 activada, permite a atacantes remotos causar una denegaci\u00f3n de servicio y posiblemente ejecutar c\u00f3digo arbitrario durante la verificaci\u00f3n del remitente."}], "id": "CVE-2004-0399", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-07-07T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/11558"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.guninski.com/exim1.html"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/11558"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-501"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.debian.org/security/2004/dsa-502"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch", "Vendor Advisory"], "url": "http://www.guninski.com/exim1.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}