Collaborate Disseminate
The Russian APT group Sandworm has been exploiting a critical Exim flaw (CVE-2019-10149) to compromise mail servers since August 2019, the NSA has warned in a security advisory published on Thursday. “When CVE-2019-10149 is successfully exploited… Continue reading NSA warns about Sandworm APT exploiting Exim flaw
The 2019 CWE Top 25 Most Dangerous Software Errors lists improper restriction of operations within the bounds of a memory buffer as the most critical weakness that leads to a dangerous vulnerability. According to CWE by MITRE: “These weaknesses are of… Continue reading 5 Buffer Overflow Vulnerabilities in Popular Apps
This latest Exim flaw could lead to at least a denial of service crash in the software but also the possibility of remote code execution. Continue reading Exim suffers another ‘critical’ remote code execution flaw
Hot on the heels of a patch for a critical RCE Exim flaw comes another one that fixes a denial of service (DoS) condition (CVE-2019-16928) that could also be exploited by attackers to pull off remote code execution. With no mitigations available at thi… Continue reading Guess what? You should patch Exim again!
A critical security vulnerability has been discovered and fixed in the popular open-source Exim email server software, which could allow a remote attacker to simply crash or potentially execute malicious code on targeted servers.
Exim maintainers toda… Continue reading New Critical Exim Flaw Exposes Email Servers to Remote Attacks — Patch Released
A fix has been issued for a critical Exim flaw that could lead to servers crashing or remote code execution attacks being launched. Continue reading Critical Exim Flaw Opens Servers to Remote Code Execution
A ‘critical’ security vulnerability has been discovered in the Exim mail server that requires admins’ urgent attention. Continue reading Critical TLS flaw opens Exim servers to remote compromise
A simple-to-exploit vulnerability in Exim needs patching on about 5M internet-facing servers. If sysadmins don’t patch—and patch quickly—they can expect their boxes to be quickly owned.
The post Sysadmins Scramble to Secure 5M Exim Email Servers appea… Continue reading Sysadmins Scramble to Secure 5M Exim Email Servers
A critical vulnerability found in Exim servers could enable a remote, unauthenticated attacker to execute arbitrary code with root privileges. Continue reading Critical Exim Flaw Opens Millions of Servers to Takeover
The Exim mail transfer agent (MTA) is impacted by a critical vulnerability that may allow local or unauthenticated remote attackers to execute programs with root privileges on the underlying system. About Exim Exim is the most widely used MTA today and… Continue reading Critical Exim flaw opens servers to remote code execution, patch now!