The receive_msg function in receive.c in the SMTP daemon in Exim 4.88 and 4.89 allows remote malicious users to cause a denial of service (infinite loop and stack exhaustion) via vectors involving BDAT commands and an improper check for a '.' character signifying the end of the content, related to the bdat_getc function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
exim exim 4.88 |
||
exim exim 4.89 |
||
debian debian linux 9.0 |
Patch imminent, for now please turn off email attachment chunking
Sysadmins who tend Exim servers have been advised to kick off their working weeks with the joy of patching. The popular (if relatively low-profile) Internet mail message transfer agent (MTA) advised of flaws in a Black Friday post to its public bugtracker, which as contributor Phil Pennock said in this message came without any prior notice. The bug tracker post explained that when parsing the BDAT data header, Exim scans for the '.' character to signify the end of an email. BDAT is a server verb...