Exim Sender Verification Remote Stack Buffer Overrun Vulnerability

Proof-of-concept code that triggers a denial of service is available at the following location:
http://www.guninski.com/exim1.html

CORE has developed a working commercial exploit for their IMPACT
product. This exploit is not otherwise publicly available or known
to be circulating in the wild.

An exploit (maxim.c) is available by newroot & nopfish:


 

Privacy Statement
Copyright 2010, SecurityFocus