CVE-2019-15846
Name
CVE-2019-15846
Description
Exim before 4.92.2 allows remote attackers to execute arbitrary code as root via a trailing backslash.
NVD Severity
high
Other trackers
CVE
,
NVD
,
CERT
,
CVE Details
,
CIRCL
,
Arch Linux
,
Debian
,
Red Hat
,
Ubuntu
,
Gentoo
,
SUSE (Bugzilla)
,
SUSE (CVE)
,
Mageia
Mailing lists
oss-security
,
full-disclosure
,
bugtraq
Exploits
Exploit DB
,
Metasploit
Forges
GitHub (
code
,
issues
), Aports (
code
,
issues
)
References
Type
URI
Mitigation
http://exim.org/static/doc/security/CVE-2019-15846.txt
Mailing List
https://www.openwall.com/lists/oss-security/2019/09/06/1
Mailing List
https://lists.debian.org/debian-lts-announce/2019/09/msg00004.html
Mailing List
https://seclists.org/bugtraq/2019/Sep/13
MLIST
http://www.openwall.com/lists/oss-security/2019/09/06/2
DEBIAN
https://www.debian.org/security/2019/dsa-4517
UBUNTU
https://usn.ubuntu.com/4124-1/
CERT-VN
https://www.kb.cert.org/vuls/id/672565
MLIST
http://www.openwall.com/lists/oss-security/2019/09/06/4
MLIST
http://www.openwall.com/lists/oss-security/2019/09/06/5
MLIST
http://www.openwall.com/lists/oss-security/2019/09/06/6
GENTOO
https://security.gentoo.org/glsa/201909-06
MLIST
http://www.openwall.com/lists/oss-security/2019/09/06/8
MLIST
http://www.openwall.com/lists/oss-security/2019/09/07/2
MLIST
http://www.openwall.com/lists/oss-security/2019/09/07/1
FEDORA
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NDF37AUNETIOXY6ZLQAUBGBVUTMMV242/
FEDORA
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FT3GY7V7SR2RHKNZNQCGXFWUSILVSZNU/
MLIST
http://www.openwall.com/lists/oss-security/2019/09/08/1
MLIST
http://www.openwall.com/lists/oss-security/2019/09/09/1
SUSE
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00024.html
FEDORA
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SBNHDAF74RI6VK2JVSEIE3VYNL7JJDYM/
UBUNTU
https://usn.ubuntu.com/4124-2/
MISC
https://exim.org/static/doc/security/CVE-2019-15846.txt
Match rules
CPE URI
Source package
Min version
Max version
cpe:2.3:a:exim:exim:*:*:*:*:*:*:*:*
exim
>= None
< 4.92.2
Vulnerable and fixed packages
Source package
Branch
Version
Maintainer
Status