CVE-2019-16928

🗓️ 27 Sep 2019 21:15:10Reported by GoogleType

osv

osv🔗 osv.dev👁 23 Views

Exim 4.92 through 4.92.2 remote code execution vulnerability via long EHLO comman

Reporter	Title	Published	Views	Family All 62
GithubExploit	Exploit for OS Command Injection in Exim	3 Jun 202002:27	–	githubexploit
GithubExploit	Exploit for OS Command Injection in Exim	3 Jun 202002:27	–	githubexploit
ATTACKERKB	CVE-2019-16928	27 Sep 201900:00	–	attackerkb
ATTACKERKB	Exim EHLO crash bug	27 Sep 201900:00	–	attackerkb
Amazon	Critical: exim	18 Oct 201900:00	–	amazon
Tenable Nessus	Amazon Linux AMI : exim (ALAS-2019-1310)	28 Oct 201900:00	–	nessus
Tenable Nessus	Debian DSA-4536-1 : exim4 - security update	30 Sep 201900:00	–	nessus
Tenable Nessus	Exim 4.92.x < 4.92.3 Heap Buffer Overflow	30 Sep 201900:00	–	nessus
Tenable Nessus	Fedora 30 : exim (2019-006dfc94cd)	2 Oct 201900:00	–	nessus
Tenable Nessus	Fedora 29 : exim (2019-d778bd4137)	10 Oct 201900:00	–	nessus

Source	Link
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog
openwall	www.openwall.com/lists/oss-security/2019/09/28/4
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T3TJW4HPYH3O5HZCWGD6NSHTEBTTAPDC/
seclists	www.seclists.org/bugtraq/2019/Sep/60
usn	www.usn.ubuntu.com/4141-1/
lists	www.lists.exim.org/lurker/message/20190927.032457.c1044d4c.en.html
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EED7HM3MFIBAP5OIMJAFJ35JAJABTVSC/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UY6HPRW7MR3KBQ5JFHH6OXM7YCZBJCOB/
debian	www.debian.org/security/2019/dsa-4536
openwall	www.openwall.com/lists/oss-security/2019/09/28/3

10 Apr 2026 04:15Current

10High risk

Vulners AI Score10

CVSS 3.19.8

EPSS0.9031

exim 4.92 4.92.2 remote code execution heap-based buffer overflow string_vformat string.c ehlo command software