Show vulnerabilities with patch / with exploit
6 June 2019

New RCE-flaw in Exim impacts almost 60% of email servers worldwide


New RCE-flaw in Exim impacts almost 60% of email servers worldwide

Yesterday we have publish a security bulletin SB2019060505 describing remote code execution vulnerability in Exim MTA. According to the recent survey, Exim is used by 57% (507,389) of all mail servers worldwide.

The flaw affects Exim installations running versions 4.87 to 4.91 and allows local and remote attackers to execute arbitrary commands with execv() call. The major concern in here is that the code will be executed with root privileges.

The vulnerability can be exploited instantly by a local attacker with the access (even having low level account) to an email server. Remote exploitation of this bug requires an attacker to maintain a connection to the vulnerable server for 7 days (by transmitting one byte every few minutes).

It is recommended to install the latest version Exim 4.92 ASAP.

Back to the list

Latest Posts

Weekly security roundup: May 25

Weekly security roundup: May 25

A massive cyber attack against Israeli websites,the EasyJet's data breach, the arrest of a hacker known as Sanix, responsible for selling billions of hacked user credentials, and more.
25 May 2020
A huge Thai database leaked 8.3 billion internet records

A huge Thai database leaked 8.3 billion internet records

According to the researcher, anyone having access to this data can “paint a picture of what a person does on the Internet.”
25 May 2020
Air transport and government agencies in Kuwait and Saudi Arabia targeted by Iranian-linked Chafer APT

Air transport and government agencies in Kuwait and Saudi Arabia targeted by Iranian-linked Chafer APT

The attacks appear more focused and sophisticated on victims from Kuwait.
25 May 2020