Exim is a popular open-source mail transfer agent that serves its purpose for Unix style operating systems such as Linux, Mac OSX, and Solaris, and is responsible for 60 percent of the internet’s email servers used for routing, delivering, and receiving messages. An important patch, Exim version 4.92.3, was released today in order to fix the issue affecting versions 4.92 through 4.92.2. The flaw was discovered by researchers and identified as CVE-2019-16928, which is described as a memory corruption issue in string_vformat defined in string.c file of the EHLO Command Handler component. If exploited, the flaw makes it possible for attackers to carry out DoS efforts and execute arbitrary code by making use of a specially crafted EHLO command. This is the third time this year that Exim has had to address critical flaws within their software and although they are usually quick to release patches, there is still a possibility for users to be affected.
Written by: Nataliia Zdrok, Threat Intelligence Analyst at Binary Defense Russia’s invasion of Ukraine increased