Exim BDAT Flaw Exposes GnuTLS Builds to Code Execution Risk

A newly discovered vulnerability, dubbed Dead.Letter, threatens Exim builds that use GnuTLS, allowing attackers to exploit a use-after-free flaw in BDAT handling and potentially execute malicious code. This critical flaw can be triggered when a specific sequence of BDAT and TLS commands is sent, leading to heap corruption and a heightened…

https://osintsights.com/exim-bdat-flaw-exposes-gnutls-builds-to-code-execution-risk?utm_source=mastodon&utm_medium=social

#EximVulnerability #Gnutls #Cve202645185 #Deadletter #Useafterfree