Security News > 2023 > September > New Critical Security Flaws Expose Exim Mail Servers to Remote Attacks
2023-09-30 04:14
Multiple security vulnerabilities have been disclosed in the Exim mail transfer agent that, if successfully exploited, could result in information disclosure and remote code execution. The list of flaws, which were reported anonymously way back in June 2022, is as follows - CVE-2023-42114 (CVSS score: 3.7) - Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability
News URL
https://thehackernews.com/2023/09/new-critical-security-flaws-expose-exim.html
Related news
- Why remote work is a security minefield (and what you can do about it) (source)
- Critical flaws fixed in Nagios Log Server (source)
- New BPFDoor Controller Enables Stealthy Lateral Movement in Linux Server Attacks (source)
- Hackers abuse Zoom remote control feature for crypto-theft attacks (source)
- Linux 'io_uring' security blindspot allows stealthy rootkit attacks (source)
- SAP fixes critical Netweaver flaw exploited in attacks (source)
- Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- Hitachi Vantara takes servers offline after Akira ransomware attack (source)
- Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-05-03 | CVE-2023-42114 | Exim NTLM Challenge Out-Of-Bounds Read Information Disclosure Vulnerability. | 0.0 |