CVE-2010-4345
HIGH severity · CVSS 7.8 · Command injection · actively exploited (CISA KEV)
7.8CVSS HIGH ● exploited
🔴 Actively exploited in the wild (CISA Known Exploited Vulnerabilities).
Added to KEV 2022-03-25. US federal agencies must patch by 2022-04-15.
Summary
Exim 4.72 and earlier allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
Impact & exploitability
Attack vectorLocal
Attack complexityLow
Privileges requiredLow
User interactionNone
Confidentiality impactHigh
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)7%
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Recommendation
This vulnerability is being actively exploited in the wild — patch affected products urgently. Open any affected product above for its exact safe version.
Official patch: http://bugs.exim.org/show_bug.cgi?id=1044 ↗
Additional information
- NVD record
- http://bugs.exim.org/show_bug.cgi?id=1044Patch
- http://lists.exim.org/lurker/message/20101209.172233.abcba158.en.htmlPatch
- http://secunia.com/advisories/42576Advisory
- http://lists.exim.org/lurker/message/20101210.164935.385e04d0.en.html
- http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00003.htmlAdvisory
- http://openwall.com/lists/oss-security/2010/12/10/1
- http://secunia.com/advisories/42930
- http://secunia.com/advisories/43128