|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-6789
|Vulnerable software versions||
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The weakness exists in the SMTP listener due to improper bounds checking. A remote attacker can send a specially crafted message, trigger buffer overflow and execute arbitrary code with privileges of the Exim user.
Successful exploitation of the vulnerability may result in system compromise.
Update to version 4.90.1.