Another potential RCE in Exim! Let’s update, folks!Continue reading “CVE-2019-16928: a new vulnerability on Exim exposes millions of email servers to remote attacks”
Ok, it is true that Exim is one of the most used SMTP servers in the world, and for this reason it is continuously monitored by many security experts, but in the last months the Remote Code Execution vulnerabilities found are a lot!Continue reading “CVE-2019-15846 – Seriously? Another RCE in Exim?”
Some months ago a serious vulnerability on EXIM has been disclosed (CVE-2017-16943), and in the last hours Meh Chang (from devco.re) discovered a buffer overflow that allows remote command execution on this MTA.
The vulnerabilities could allow remote attackers to execute arbitrary code or cause a denial of service via vectors involving BDAT commands.