As many as 4.5 million systems across 2 million IP addresses have yet to be patched, security experts say. The vulnerability exists in Exim versions 4.92.1 and earlier. It’s the second time in the last three months that a remotely executable flaw has been revealed in the software. The flaw could be abused to steal data or execute social engineering shenanigans. A proof-of-concept exploit code has been circulating online, and as of last week, a rudimentary exploit was already making the rounds.”]
Source: https://www.cuinfosecurity.com/email-servers-exim-flaw-leaves-millions-at-risk-hacking-a-13053