Critical Exim Mail Server Vulnerability Exposes Millions to Malicious Attachments – [email protected] (The Hacker News)

– [[{“value”:”A critical security issue has been disclosed in the Exim mail transfer agent that could enable threat actors to deliver malicious attachments to target users’ inboxes.

The vulnerability, tracked as CVE-2024-39929, has a CVSS score of 9.1 out of 10.0. It has been addressed in version 4.98.

“Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass”}]]  – Read More  – The Hacker News