Exim Remotely Exploitable: Most Machines Online And Running A Mail Transfer Agent Ready To Run Other People's Code

News has emerged that Exim, the most popularly deployed piece of email transmission software, is confirmed to be remotely exploitable for version numbers between 4.87 and 4.91 (archived). There are claims that the exploitable portion of the software was accidentally fixed in version 4.92 released in February, though the historical trend for this sort of shennanigan suggests more plausibly that an intentional NOBUS backdoor was quietly tightented after the US set expanded.

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>