Unrated severityNVD Advisory· Published Jul 4, 2024· Updated Mar 18, 2025
CVE-2024-39929
CVE-2024-39929
Description
Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass a $mime_filename extension-blocking protection mechanism, and potentially deliver executable attachments to the mailboxes of end users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- osv-coords3 versionspkg:rpm/opensuse/exim&distro=openSUSE%20Leap%2015.5pkg:rpm/opensuse/exim&distro=openSUSE%20Tumbleweedpkg:rpm/suse/exim&distro=SUSE%20Package%20Hub%2015%20SP5
< 4.97.1-bp155.5.12.1+ 2 more
- (no CPE)range: < 4.97.1-bp155.5.12.1
- (no CPE)range: < 4.98-1.1
- (no CPE)range: < 4.97.1-bp155.5.12.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.