CVE-2018-6789

Updated: 2022-05-25 08:57:37.686272

Description:

An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.


Links NIST CIRCL RHEL Ubuntu

Severity

Severity Score
CVSS Version 2.x HIGH 7.5
CVSS Version 3.x CRITICAL 9.8

Known exploits

Added Date Description Due Date Notes
2021-11-03 Issue in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely. 2022-05-03

Status

OS name Project name Version Score Severity Status Errata Last updated
CentOS 6 ELS exim 4.94.2 9.8 CRITICAL Not Vulnerable 2021-12-09 07:57:03
CloudLinux 6 ELS exim 4.94.2 9.8 CRITICAL Not Vulnerable 2021-12-09 07:57:03
Ubuntu 16.04 ELS exim 4.86.2-2 9.8 CRITICAL Not Vulnerable 2021-12-21 09:55:07
Ubuntu 18.04 ELS exim 4.90.1-1 9.8 CRITICAL Needs Triage 2023-03-02 13:00:59