Tag：Exim | DEVCORE

Exim Off-by-one RCE: Exploiting CVE-2018-6789 with Fully Mitigations Bypassing

meh

2018-03-06

We reported an overflow vulnerability in the base64 decode function of Exim on 5 February, 2018, identified as CVE-2018-6789. This bug exists since the first commit of exim, hence ALL versions are affected. According to our research, it can be leveraged to gain Pre-auth Remote Code Execution and at least 400k servers are at risk. Patched version 4.90.1 is already released and we suggest to upgrade exim immediately.

Road to Exim RCE - Abusing Unsafe Memory Allocator in the Most Popular MTA

meh

2017-12-11

On 23 November, 2017, we reported two vulnerabilities to Exim. These bugs exist in the SMTP daemon and attackers do not need to be authenticated, including CVE-2017-16943 for a use-after-free (UAF) vulnerability, which leads to Remote Code Execution (RCE); and CVE-2017-16944 for a Denial-of-Service (DoS) vulnerability.

Red Team Assessment

Penetration Testing

Security Consulting

Security Training

Overview

Competitions and Awards

Enterprise Vulnerability Reports

International Conferences

CVE List

Company Overview

Team Members

Achievements

Corporate Social Responsibility

Job Opportunities

BLOG

Media Resources

Search

Contact

中文

English

BLOG

All #Exim Articles

Exim Off-by-one RCE: Exploiting CVE-2018-6789 with Fully Mitigations Bypassing

meh

Road to Exim RCE - Abusing Unsafe Memory Allocator in the Most Popular MTA

meh