Unrated severityCISA KEVNVD Advisory· Published Feb 8, 2018· Updated Oct 21, 2025
CVE-2018-6789
CVE-2018-6789
Description
An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely.
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
13- www.exploit-db.com/exploits/44571/mitreexploitx_refsource_EXPLOIT-DB
- www.exploit-db.com/exploits/45671/mitreexploitx_refsource_EXPLOIT-DB
- usn.ubuntu.com/3565-1/mitrevendor-advisoryx_refsource_UBUNTU
- www.debian.org/security/2018/dsa-4110mitrevendor-advisoryx_refsource_DEBIAN
- openwall.com/lists/oss-security/2018/02/10/2mitrex_refsource_CONFIRM
- packetstormsecurity.com/files/162959/Exim-base64d-Buffer-Overflow.htmlmitrex_refsource_MISC
- www.openwall.com/lists/oss-security/2018/02/07/2mitremailing-listx_refsource_MLIST
- www.securityfocus.com/bid/103049mitrevdb-entryx_refsource_BID
- www.securitytracker.com/id/1040461mitrevdb-entryx_refsource_SECTRACK
- devco.re/blog/2018/03/06/exim-off-by-one-RCE-exploiting-CVE-2018-6789-en/mitrex_refsource_MISC
- exim.org/static/doc/security/CVE-2018-6789.txtmitrex_refsource_CONFIRM
- git.exim.org/exim.git/commit/cf3cd306062a08969c41a1cdd32c6855f1abecf1mitrex_refsource_CONFIRM
- lists.debian.org/debian-lts-announce/2018/02/msg00009.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.