21 nails in Exim mail server: Vulnerabilities enable 'full remote unauthenticated code execution', millions of boxes at risk

21 nails in Exim mail server: Vulnerabilities enable 'full remote unauthenticated code execution', millions of boxes at risk

2021-05-05 17:20

Researchers at security biz Qualys discovered 21 vulnerabilities in Exim, a popular mail server, which can be chained to obtain "a full remote unauthenticated code execution and gain root privileges on the Exim Server."

Exim is a mail transfer agent, responsible for receiving and forwarding email messages.

"To run the exploit, all we need to do is point it to the target Exim server IP endpoint," explained researcher Bharat Jogi.

A further vulnerability allows the attacker to take ownership of any file on the system, because part of the Exim code runs as root.

The vulnerabilities were disclosed yesterday, 4 May, a date which Qualys said was agreed with the Exim project.

All Exim versions before Exim 4.94.2 are vulnerable.

News URL

https://go.theregister.com/feed/www.theregister.com/2021/05/05/21_nails_in_exim_mail/

#codeexecution #exim #server #vulnerabilities

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Exim		1	2	14	21	9	46