10 matches found
Fedora 27 : exim (2017-0053bb9719)
This is an update fixing denial of service CVE-2017-16944. ---- This is an update fixing use-after-free CVE-2017-16943. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and...
Amazon Linux AMI : exim (ALAS-2017-932)
Use-after-free in receivemsg function via vectors involving BDAT commands The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free via vectors involving BDAT commands. CVE-2017-16943...
Critical: exim
Issue Overview: Use-after-free in receivemsg function via vectors involving BDAT commands The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free via vectors involving BDAT commands...
Fedora Update for exim FEDORA-2017-0032baa7d7
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : exim (openSUSE-2017-1342)
This update for exim fixes the following issues : Security issue fixed : - CVE-2017-16943: Fix possible remote code execution boo1069857. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
[ASA-201711-32] exim: multiple issues
Arch Linux Security Advisory ASA-201711-32 ========================================== Severity: Critical Date : 2017-11-30 CVE-ID : CVE-2017-1000369 CVE-2017-10140 CVE-2017-16943 CVE-2017-16944 Package : exim Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-518 Summar...
Debian: Security Advisory (DSA-4053-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Exim Internet Mailer Found Vulnerable to RCE And DoS Bugs; Patch Now
A security researcher has discovered and publicly disclosed two critical vulnerabilities in the popular Internet mail message transfer agent Exim, one of which could allow a remote attacker to execute malicious code on the targeted server. Exim is an open source mail transfer agent MTA developed...
CVE-2017-16943
CVE-2017-16943 and CVE-2017-16944 are use-after-free (CVE-16943) and BDAT handling DoS (CVE-16944) flaws in Exim’s receive_msg function (receive.c) for the SMTP daemon on Exim 4.88/4.89. CVE-16943 enables remote code execution or crash; CVE-16944 causes denial of service via infinite loop/stack e...
CVE-2017-16943
The receivemsg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service use-after-free via vectors involving BDAT commands...