|
Family: SMTP problems --> Category: mixed
Exim Multiple Overflows Vulnerability Scan
Vulnerability Scan Summary Exim Multiple Overflows
Detailed Explanation for this Vulnerability Test
The remote host is running a version of the Exim MTA which is vulnerable
to several remote buffer overflows. Specifically, if either
'headers_check_syntax' or 'sender_verify = true' is in the exim.conf
file, then a remote attacker may be able to execute a classic stack-
based overflow and gain inappropriate access to the machine.
*** If you are running checks with safe_checks enabled, this may be a
false positive as only banners were used to assess the risk! ***
It is known that Exim 3.35 and 4.32 are vulnerable.
Solution : Upgrade to Exim latest version
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|