Critical Vulnerability in EXIM Servers Exposed Millions to [...]


Critical Vulnerability in EXIM Servers Exposed Millions to Cyber-Attacks


whitelabelitsolutions.com logo📅 - This flaw in EXIM email servers leaves millions of users at risk of being hacked by allowing attackers to execute critical commands.

If you are not familiar with the term then you might be wondering what EXIM is? Allow me to explain, EXIM is an open source MTA or mail transfer agent that is responsible for receiving, routing and delivering email messages. This unique source was developed at the University of Cambridge for the use of UNIX systems; is said to feature more straightforward configuration and task management. EXIM includes user options for defense against mail bombs and unsolicited junk mail: users can set options to refuse messages from particular senders, hosts, or networks. EXIM can be run on any TCP/IP network, in conjunction with any combination of host and user software, and is the default MTA included on some LINUX systems. In the last few days millions of EXIM servers have been exposed to Cyber-threats; it is said that all servers running 4.92.1 version may be affected. This security breach tracked as CVE-2019-15846 allows intruders to gain root-level access to the system; this is the second time in three month that EXIM has experience flaws. Basically, when the Exim server is configured to accept TLS connections, hackers can send a backslash-null sequence attached to the end of an SNI package during the initial TLS handshake. This can enable hackers to run malicious codes and obtain root-level access to the system. Experts explained that in order to remotely exploit this vulnerability in the default configuration, an attacker must keep a connection to the vulnerable server open for 7 days. It is necessary to transmit one byte every few minutes; however, the experts cannot guarantee that this exploitation method is unique. EXIM team learned about this breach in July and quickly release an update version 4.92.2 with the security patch.

whitelabelitsolutions.com Reads: 703 | Category: General | Source: WHTop : www.WHTop.com
URL source: https://whitelabelitsolutions.com/critical-vulnerability-in-exim-servers-exposed-millions-to-cyber-attacks/

Company: White Label IT Solutions

Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!

Related news


📅 - Is 5G Technology Dangerous? - The technology world has been ranting about the possibilities of 5G technology. There is always lot of energy around the release of new technology. The buzz around 5G still hasn’t come down, but now the buzz has taken a turn and is around the negative impact and serious concern about the potential health risks.

The main argument is that because 5G technology is using such high-frequency radio airwaves that dangerous levels of radiation could be possible. The fear that radiation from 5G wireless technology being dangerous to public health has been circulating for some time. But many people claim that these are merely conspiracies. CNET believes 5G is most likely not making anyone sick. ...
📅 - Can Your Network Bandwidth Support Your Remote Workers and Customers? - Today, more people are staying at home to work remotely and shop online, rather than going to physical offices or shops. That means your remote workforce and customers are putting more stress on your network. Soon, the health of your business will depend on your network’s ability to handle this surge in traffic. Slow response times or, worse, system crashes, will cost you in employee productivity and business revenues. It’s important to have the network bandwidth to handle this influx. In this post, we review the questions you should ask of your current network.

Do you have the network bandwidth to handle the rise in traffic?
Determining how much network bandwidth you might need depends ...
📅 - What Is A Business Email Compromise? - With the world depending more than ever on virtual services, scam artists are always finding ways to get access to easy money.

Business Email Compromise (BEC), also known as Email Account Compromise (EAC) is a scam that targets specifically all of those organizations that regularly perform wire transfer payments and/or have foreign suppliers. It is known to be one of the most financially damaging online crimes; it is extremely profitable for cyber-criminals by doing only a minimum effort. Nowadays, communications for both personal and professional purposes are done through email, making BEC scams very popular.

As any other entrepreneurs, hackers are now researching before launching a ...
📅 - Meeting Pandemic Era Digital Service Needs With Colocation - New York and New Jersey colocation facilities have met the changing needs and the uptick in colocation usage during the COVID-19 outbreak. But the reality of the pandemic’s long-term implications for permanent remote work, telehealth, distance education, and more are now becoming clear. This shift is once again redefining the role of colocation services in New Jersey once gain for businesses. In the broader pandemic picture across the country, over 30 states are now identified as COVID-19 hotspots. This puts yet another burden on businesses that now must rely on teleconferencing to do business with others from outside the area because of the quarantine rule.

Healthcare and education are ...
📅 - Remote Work Best Practices - There is no magic formula for remote work, but there are certain practices that will definitely make it better.

After the coronavirus pandemic, the demand for remote work has risen since most industries shifted to a virtual environment. Not everyone is suited for this approach and many people are still trying to figure out how it works, just by doing their best to stay happy and productive.

Although it’s been around 8 months since the outbreak of COVID-19 started, it’s a fact that remote work has many challenges. These obstacles have been more evident in those industries that were not used to this approach, and individuals as well as entire organizations are still struggling to make it ...