Cybersecurity Alerts

Exim Heap-Based Buffer Overflow Vulnerability

Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-119

References

• https://nvd.nist.gov/vuln/detail/CVE-2010-4344