[exim] Re: Exim Zero Day?

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Andrew C Aitchison
Date:  
À: Some Guy via Exim-users
Sujet: [exim] Re: Exim Zero Day?
On Fri, 29 Sep 2023, Some Guy via Exim-users wrote:

> Hi, I'm running an appliance which includes an Exim MTA and now I'm
> wondering, if I should be worried because of the RCE with CVSS 9.8
> described at the Zero Day Initiative homepage here:
>
> https://www.zerodayinitiative.com/advisories/ZDI-23-1469/


https://arstechnica.com/security/2023/09/critical-vulnerabilities-in-exim-threaten-over-250k-email-servers-worldwide/?comments=1&comments-page=1
lists several CVEs.

> Apparently this has been reported first in 2022, but I'm not sure if
> this has been fixed, so a statement would be neat, haven't found
> anything on the website so far.
>
>> From their page:
> """
> September 27th, 2023
>
> (0Day) Exim AUTH Out-Of-Bounds Write Remote Code Execution Vulnerability
>
> ZDI-23-1469
> ZDI-CAN-17434
>
> CVE ID    [CVE-2023-42115](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42115)"""
> Any information on this would be highly appreciated. Thanks!


Yesterday Heiko posted
     https://seclists.org/oss-sec/2023/q3/254
in one of the security lists.


-- 
Andrew C. Aitchison                      Kendal, UK
                    andrew@???


--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscribe@???
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/