14 matches found
OESA-2024-2129 exim security update
Exim is a message transfer agent MTA developed at the University of Cambridge for use on Unix systems connected to the Internet. It is freely available under the terms of the GNU General Public Licence. In style it is similar to Smail 3, but its facilities are more general. There is a great deal ...
Fedora: Security Advisory (FEDORA-2024-87a7b3f47a)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Exploit for Improper Encoding or Escaping of Output in Exim
Exim CVE-2024-39929 Exploit PoC This repository contains a Pr...
openSUSE 15 Security Update : exim (openSUSE-SU-2024:0218-1)
The remote openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2024:0218-1 advisory. - CVE-2024-39929: Fixed incorrect parsing of multiline rfc2231 header filename boo1227423. Tenable has extracted the preceding description block directly...
openSUSE Security Advisory (openSUSE-SU-2024:0218-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2024:0218-1 Security update for exim
This update for exim fixes the following issues: - CVE-2024-39929: Fixed incorrect parsing of multiline rfc2231 header filename boo1227423...
Fedora 39 : exim (2024-87a7b3f47a)
The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-87a7b3f47a advisory. This is new version of exim fixing CVE-2024-39929. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...
Fedora 40 : exim (2024-55603127f3)
The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-55603127f3 advisory. This is new version of exim fixing CVE-2024-39929. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note tha...
Security update for exim (important)
openSUSE Security Update: Security update for exim Announcement ID: openSUSE-SU-2024:0218-1 Rating: important References: 1227423 Cross-References: CVE-2024-39929 Affected Products: openSUSE Backports SLE-15-SP5 An update that fixes one vulnerability is now available. Description: This update for...
Critical Exim Mail Server Vulnerability Exposes Millions to Malicious Attachments
A critical security issue has been disclosed in the Exim mail transfer agent that could enable threat actors to deliver malicious attachments to target users' inboxes. The vulnerability, tracked as CVE-2024-39929, has a CVSS score of 9.1 out of 10.0. It has been addressed in version 4.98. "Exim...
Debian dsa-5728 : exim4 - security update
The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5728 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5728-1 [email protected] https://www.debian.org/security/...
Debian: Security Advisory (DSA-5728-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
DEBIAN-CVE-2024-39929
Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass a $mimefilename extension-blocking protection mechanism, and potentially deliver executable attachments to the mailboxes of end users...
CVE-2024-39929
Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass a $mimefilename extension-blocking protection mechanism, and potentially deliver executable attachments to the mailboxes of end users...