|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-6789
|CWE ID|| CWE-120
|Public exploit||Not available|
|Vulnerable software versions||
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists in the SMTP listener due to improper bounds checking. A remote attacker can send a specially crafted message, trigger buffer overflow and execute arbitrary code with privileges of the Exim user.
Successful exploitation of the vulnerability may result in system compromise.
Cybersecurity help is currently unaware of any solutions addressing the vulnerability.