Exim
Unpatched Critical Zero-Day Bug Puts Exim Servers at Risk
Millions of Exim servers could be impacted by a flaw found in all versions of Exim, according to an advisory from Trend Micro ...
Exim Remote Code Execution Vulnerability (CVS 2023-42115) Notification
Overview Recently, NSFOCUS CERT detected an Exim remote code execution vulnerability (CVE-2023-42115). When external authentication is enabled, due to improper user input verification, an unauthenticated attacker can remotely exploit this vulnerability by ...
NSA: Russia Hacking U.S. Firms, via Old Exim Flaw
The Russian state is breaking into companies, exploiting a vulnerability in an open-source email server ...
5 Buffer Overflow Vulnerabilities in Popular Apps
The 2019 CWE Top 25 Most Dangerous Software Errors lists improper restriction of operations within the bounds of a memory buffer as the most critical weakness that leads to a dangerous vulnerability ...
Sysadmins Scramble to Secure 5M Exim Email Servers
A simple-to-exploit vulnerability in Exim needs patching on about 5M internet-facing servers. If sysadmins don’t patch—and patch quickly—they can expect their boxes to be quickly owned ...
Exim MTA Vulnerability (The Return of the WIZard – CVE-2019-10149)
Last week, Qualys issued a security advisory for a vulnerability we discovered during a code review of Exim. This vulnerability can lead to Remote Command Injection, and is currently being actively attacked ...
Exim Flaw Puts Hundreds of Thousands of Email Servers at Risk
A serious vulnerability in the widely used Exim software could expose hundreds of thousands of email servers to hacking if left unpatched, researchers warn. The flaw, tracked as CVE-2018-6789, was fixed in ...
400,000 servers at risk if open-source Exim remote attack bug is left unpatched
At least 400,000 servers are thought to be running a vulnerable program that can be tricked by a remote hacker into running malicious code. The post 400,000 servers at risk if open-source ...
Public Remote Code Execution Exploit Affects Thousands of Email Servers
Developers of the widely used Exim message transfer agent are advising administrators to disable a feature on their email servers to protect them from a critical remote execution exploit that has been ...