DV Hardware - bringing you the hottest news about processors, graphics cards, Intel, AMD, NVIDIA, hardware and technology!
   Home | News submit | News Archives | Reviews | Articles | Howto's | Advertise
DarkVision Hardware - Daily tech news
May 22, 2019 
Main Menu
News archives

Who's Online
There are currently 209 people online.


Latest Reviews
Ewin Racing Flash gaming chair
Arctic BioniX F120 and F140 fans
Jaybird Freedom 2 wireless sport headphones
Ewin Racing Champion gaming chair
Zowie P-TF Rough mousepad
Zowie FK mouse
BitFenix Ronin case
Ozone Rage ST headset

Follow us

400,000 web servers at risk due to bug in message agent

Posted on Wednesday, March 07 2018 @ 12:42:24 CET by

A vulnerability in the Exim e-mail program puts up to 400,000 servers at risk of remote code execution. Admins of servers with Exim are advised to upgrade as soon as possible to version 4.90.1 as all earlier versions have a buffer overflow vulnerability that can be abused to remotely execute code. The updated version has been available since February 10.
A single byte of data resulting from an exploit "overwrites some critical data when the string fits some specific length," the researchers, from Devcore Security Consulting, wrote. "In addition, this byte is controllable, which makes exploitation more feasible. Base64 decoding is such a fundamental function, and therefore this bug can be triggered easily, causing remote code execution."

For their part, developers of Exim wrote in an advisory: "Currently, we're unsure about the severity" of the vulnerability. "We *believe* an exploit is difficult. A mitigation isn't known."
Source: ARS Technica



DV Hardware - Privacy statement
All logos and trademarks are property of their respective owner.
The comments are property of their posters, all the rest © 2002-2019 DM Media Group bvba