Jonkman Microblog
  • Login
Show Navigation

  • Public

    • Public
    • Network
    • Groups
    • Popular
    • People

Conversation

Notices

  1. Jens Kubieziel (qbi@quitter.se)'s status on Thursday, 14-Dec-2017 12:22:42 EST Jens Kubieziel Jens Kubieziel
    Beschreibung zur Sicherheitslücke in #Exim
    !linux #RCE
    https://devco.re/blog/2017/12/11/Exim-RCE-advisory-CVE-2017-16943-en/
    In conversation Thursday, 14-Dec-2017 12:22:42 EST from quitter.se permalink

    Attachments

    1. Road to Exim RCE - Abusing Unsafe Memory Allocator in the Most Popular MTA | DEVCORE 戴夫寇爾
      from DEVCORE 戴夫寇爾
      On 23 November, 2017, we reported two vulnerabilities to Exim. These bugs exist in the SMTP daemon and attackers do not need to be authenticated, including CVE-2017-16943 for a use-after-free (UAF) vulnerability, which leads to Remote Code Execution (RCE); and CVE-2017-16944 for a Denial-of-Service (DoS) vulnerability.
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Jonkman Microblog is a social network, courtesy of SOBAC Microcomputer Services. It runs on GNU social, version 1.2.0-beta5, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Jonkman Microblog content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.