Remote code execution in Exim

Published: 2018-02-09 13:46:04 | Updated: 2018-02-09 15:12:34
Severity High
Patch available NO
Number of vulnerabilities 1
CVE ID CVE-2018-6789
CVSSv3 9.1 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:U/RC:C]
CWE ID CWE-120
Exploitation vector Network
Public exploit Not available
Vulnerable software Exim
Vulnerable software versions Exim 4.90
Exim 4.89.1
Exim 4.89
Show more
Vendor URL Exim

Security Advisory

1) Buffer overflow

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The weakness exists in the SMTP listener due to improper bounds checking. A remote attacker can send a specially crafted message, trigger buffer overflow and execute arbitrary code with privileges of the Exim user.

Successful exploitation of the vulnerability may result in system compromise.

Remediation

Cybersecurity help is currently unaware of any solutions addressing the vulnerability.

External links

https://exim.org/static/doc/security/CVE-2018-6789.txt

Back to List