CVEs-PoC/2010/CVE-2010-4344.md

### [CVE-2010-4344](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4344)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20n%2Fa%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session that includes two MAIL commands in conjunction with a large message containing crafted headers, leading to improper rejection logging.

### POC

#### Reference
- http://www.openwall.com/lists/oss-security/2021/05/04/7
- http://www.theregister.co.uk/2010/12/11/exim_code_execution_peril/

#### Github
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/byte-mug/cumes
- https://github.com/oneplus-x/jok3r
- https://github.com/sbeteta42/enum_scan