Reports of Attacks against EXIM vulnerability

Published: 2010-12-17
Last Updated: 2010-12-17 17:40:25 UTC
by Johannes Ullrich (Version: 1)
4 comment(s)

Users of the popular exim mail server report attacks exploiting the recently patches vulnerability [1,2].  It appears that the attacks are scripted and installing popular rootkits. If you experienced an attack against exim: We are interested in packet captures or other logs showing how the attack is performed.


Johannes B. Ullrich, Ph.D.
SANS Technology Institute

Keywords: exim
4 comment(s)
Diary Archives