Strike ID:
E19-7s3k1
CVSS:
7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
False Positive:
t
Variants:
4
Year:
2019

Description

A heap-based buffer overflow exists in Exim versions 4.92 to 4.92.2 due to lack of user input sanitization when processing EHLO commands. A successful attack may lead to remote command execution with the privileges of the user running the Exim service.

CVE

References

MSB

BID

ExploitDB

Secunia

Security Tracker

Metasploit

ZDI

Google

OSVDB

{}