Published: 24/12/2023 Updated: 02/02/2024

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 0

Exim prior to 4.97.1 allows SMTP smuggling in certain PIPELINING/CHUNKING configurations. Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism. This occurs because Exim supports <LF>.<CR><LF> but some other popular e-mail servers do not.

Vulnerable Product	Search on Vulmon	Subscribe to Product
exim exim
fedoraproject extra packages for enterprise linux 8.0
fedoraproject extra packages for enterprise linux 9.0
fedoraproject extra packages for enterprise linux 7.0
fedoraproject fedora 38
fedoraproject fedora 39
debian debian linux 10.0

Debian Bug report logs - #1059387 exim4: CVE-2023-51766 Package: src:exim4; Maintainer for src:exim4 is Exim4 Maintainers <pkg-exim4-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 24 Dec 2023 08:45:04 UTC Severity: important Tags: security, upstream Found in ve ...

Exim through 497 allows SMTP smuggling in certain configurations Remote attackers can use a published exploitation technique to inject e-mail messages with a spoofed MAIL FROM address, allowing bypass of an SPF protection mechanism This occurs because Exim supports <LF><CR><LF> but some other popular e-mail servers do not (CV ...

oss-sec mailing list archives   By Date By Thread </form>    Re: Re: New SMTP smuggling attack   From: Marcus Meissner <meissner () ...

oss-sec mailing list archives   By Date By Thread </form>    Re: CVE-2023-51766: Exim: SMTP smuggling   From: Jeffrey Walton <noloa ...

smtpsmug Script to help analyze mail servers for SMTP Smuggling vulnerabilities docs smtpsmug allows sending mails to an smtp server and ending it with various malformed end of data symbol This tests whether servers are affected by SMTP Smuggling vulnerabilities Please consider this preliminary and work in progress, I am still trying to fully understand the issue myself By

CWE-345 https://sec-consult.com/blog/detail/smtp-smuggling-spoofing-e-mails-worldwide/https://exim.org/static/doc/security/CVE-2023-51766.txt https://bugs.exim.org/show_bug.cgi?id=3063 https://www.openwall.com/lists/oss-security/2023/12/23/2 http://www.openwall.com/lists/oss-security/2023/12/24/1 http://www.openwall.com/lists/oss-security/2023/12/25/1 https://git.exim.org/exim.git/commit/5bb786d5ad568a88d50d15452aacc8404047e5ca https://git.exim.org/exim.git/commit/cf1376206284f2a4f11e32d931d4aade34c206c5 https://bugzilla.redhat.com/show_bug.cgi?id=2255852 https://fahrplan.events.ccc.de/congress/2023/fahrplan/events/11782.html http://www.openwall.com/lists/oss-security/2023/12/29/2 https://github.com/Exim/exim/blob/master/doc/doc-txt/cve-2023-51766 http://www.openwall.com/lists/oss-security/2024/01/01/1 http://www.openwall.com/lists/oss-security/2024/01/01/2 http://www.openwall.com/lists/oss-security/2024/01/01/3 https://www.youtube.com/watch?v=V8KPV96g1To https://lists.debian.org/debian-lts-announce/2024/01/msg00002.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QPDWHJPABVJCXDSNELSSVTIVAJU2MDUQ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ORN7OKEQPPBKUHYRQ6LR5PSNBQVDHAWB/https://lwn.net/Articles/956533/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1059387 https://nvd.nist.gov https://alas.aws.amazon.com/ALAS-2024-1908.html

CVE-2023-51766

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect