July 12, 2024 at 04:55PM Censys warns of over 1.5 million unpatched Exim mail transfer agent (MTA) instances vulnerable to CVE-2024-39929, allowing threat actors to bypass security measures and deliver malicious attachments. While mostly concentrated in the US, Russia, and Canada, these servers are at risk, with a PoC available but no active exploitation reported … Read more
July 12, 2024 at 11:27AM Censys warns of a critical vulnerability affecting over 1.5 million internet-accessible Exim mail transfer agent installations. Tracked as CVE-2024-39929, it enables attackers to deliver malicious executables to user mailboxes, potentially leading to code execution and system compromise. Despite a patched version being available, most servers remain unpatched, with a PoC … Read more
July 12, 2024 at 08:00AM A critical security issue in the Exim mail transfer agent has a 9.1 out of 10.0 CVSS score (CVE-2024-39929). Attackers can deliver malicious attachments to user inboxes, potentially compromising systems. Over 1.5 million Exim servers are vulnerable, primarily in the U.S., Russia, and Canada. It’s essential to apply the patches … Read more