all InfoSec news
CVE-2023-42115: Critical RCE Vulnerability in Exim
Malware Analysis, News and Indicators - Latest topics malware.news
On 2 October 2023, Exim released security fixes for an out-of-bounds write remote code execution (RCE) vulnerability (CVE-2023-42115, CVSS: 9.8). This vulnerability affects the Simple Mail Transfer Protocol (SMTP) service and is caused by improper validation of user input. A threat actor can remotely exploit CVE-2023-42115 by writing data beyond the boundaries of a buffer, … CVE-2023-42115: Critical RCE Vulnerability in Exim
Article Link: CVE-2023-42115: Critical RCE Vulnerability in Exim - Arctic Wolf
1 post - 1 participant
actor beyond code code execution critical cve cve-2023-42115 cvss data exim exploit fixes input mail october out-of-bounds out-of-bounds write protocol rce remote code remote code execution security service simple smtp threat threat actor transfer validation vulnerability writing