A major flaw in Exim’s mail transfer agent (MTA) software has been detected that has gone without a patch for more than a year.
Researchers from Trend Micro’s Zero Day Initiative were tipped off by an anonymous researcher in June last year, about an out-of-bounds write weakness discovered in the SMTP service, BleepingComputer reported.
Exim is an MTA that runs in the background of email servers, and hackers can use it to run malware on vulnerable endpoints.