CVE-2019-10149 - Exim Mail Transfer Agent (MTA) Improper Input Validation
Project:Exim
Product:Mail Transfer Agent (MTA)
Date Added:2022-01-10Due Date:2022-07-10
Vulnerability Name
Exim Mail Transfer Agent (MTA) Improper Input Validation
Description
Improper validation of recipient address in deliver_message() function in /src/deliver.c may lead to remote command execution.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-10149
Related News Articles
Critical Exim bug bypasses security filters on 1.5 million mail serversJuly 13, 2024