A critical security issue has been disclosed in the Exim mail transfer agent that could enable threat actors to deliver malicious attachments to target users' inboxes.

The vulnerability, tracked as CVE-2024-39929, has a CVSS score of 9.1 out of 10.0. It has been addressed in version 4.98.

"Exim through 4.97.1 misparses a multiline RFC 2231 header filename, and thus remote attackers can bypass



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/07/critical-exim-mail-server-vulnerability.html