Blog | G5 Cyber Security

Exim TLS Flaw Opens Email Servers to Remote ‘Root’ Code Execution Attacks

A critical remote code execution vulnerability has been discovered in the popular open-source Exim email server software. Exim maintainers today released Exim version 4.92.2 after publishing an early warning two days ago. The vulnerability was discovered by an open source contributor and security researcher who goes by the online alias Zerons. It affects at least half a million Exim servers that accept TLS connections, potentially allowing attackers to gain root-level access to the system. Server administrators are highly recommended to install the latest Exim 4.2 version immediately.

Source: https://thehackernews.com/2019/09/exim-email-server-vulnerability.html

Exit mobile version