Exim string_format Function Remote Overflow
High Nessus Plugin ID 51179
SynopsisThe remote service has a buffer overflow.
DescriptionA heap overflow vulnerability exists in the version of exim installed on the remote host.
By sending a specially crafted message to the server, a remote attacker can leverage this vulnerability to execute arbitrary code on the server with the privilege of the exim server. A separate vulnerability that Nessus didn't test for, CVE-2010-4345, is often used to elevate the exim user to root access.
Note that Nessus checked for this vulnerability by sending a specially crafted packet and checking the response, without crashing the service.
All 4.6x versions 4.69-9 and below are known to be affected, and others may be as well.
SolutionUpgrade to version 4.70 as it addresses the issue.