Exim < 3.36 / 4.33 Multiple Remote Overflows
Medium Nessus Plugin ID 12232
SynopsisThe remote SMTP server has multiple buffer overflow vulnerabilities.
DescriptionThe remote version of Exim has multiple remote stack-based buffer overflow vulnerabilities when header syntax checking is enabled. It should be noted that this is not the default configuration. A remote attacker could exploit this to execute arbitrary code.
SolutionUpgrade to Exim 4.32 or later, or disable header syntax checking in exim.conf.