CVE-2010-4344 - Exim Heap-Based Buffer Overflow Vulnerability
Project:Exim
Product:Exim
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
Exim Heap-Based Buffer Overflow Vulnerability
Description
Heap-based buffer overflow in the string_vformat function in string.c in Exim before 4.70 allows remote attackers to execute arbitrary code via an SMTP session.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2010-4344