vulnerability

Debian: CVE-2018-6789: exim4 -- security update

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:P/I:P/A:P)	Feb 8, 2018	Feb 12, 2018	Mar 30, 2026

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:P/A:P)

Published

Feb 8, 2018

Added

Feb 12, 2018

Modified

Mar 30, 2026

Description

An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.

Solution

debian-upgrade-exim4

References

CVE-2018-6789
https://attackerkb.com/topics/CVE-2018-6789
CWE-120
DEBIAN-DSA-4110
EUVD-EUVD-2018-18536
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-18536

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report