SERVER-OTHER -- Snort has detected traffic exploiting vulnerabilities in a server in the network.
SERVER-OTHER Exim malformed BDAT code execution attempt
This event is generated when a code execution attempt is detected in Exim. Impact: Attempted Administrator Privilege Gain Details: In the SMTP daemon in Exim 4.88 and 4.89 allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free) via vectors involving BDAT commands. Recommendation: Upgrade to the latest version of software and apply the appropriate vendor-supplied patches. The host should be checked for potential compromise. Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2017-16943 |
Loading description
|