Exim mail server: Vulnerabilities

Researchers at safety firm Qualys found 21 vulnerabilities in Exim, a preferred mail server, which could be chained to acquire “a full distant unauthenticated code execution and acquire root privileges on the Exim Server.”.

Exim is a mail switch agent (MTA), chargeable for receiving and forwarding e-mail messages. It runs totally on Unix or Linux and can be the primary MTA used on cPanel.

In line with one latest survey practically 60 per cent of mail servers seen on the web use Exim.

The Qualys researchers have now reported on 21 important vulnerabilities found by way of a code audit, 10 of which could be exploited remotely.

Profitable exploitation of those vulnerabilities would permit a distant attacker to realize full root privileges on the goal server and execute instructions to put in applications, modify knowledge, and create new accounts.

All variations earlier than Exim-4.94.2 are weak, and safety updates had been launched for the vulnerabilities on 04/05/2021.

We might strongly advise all purchasers operating exim to use the updates for this as quickly as potential.

For patrons operating cPanel, so long as you may have utilized all updates obtainable, this could then be utilizing the newest model of Exim that isn’t weak.