Shirin Zero Day Initiative (ZDI) ya bayyana bayanai game da lahani (0-day) mara lahani (CVE-2023-42115, CVE-2023-42116, CVE-2023-42117) a cikin sabar sabar ta Exim, yana ba ku damar aiwatar da ayyukanku daga nesa. code akan uwar garken tare da tsarin haƙƙin da ke karɓar haɗin kai a tashar tashar sadarwa 25. Ba a buƙatar tantancewa don kai harin.
Rashin lahani na farko (CVE-2023-42115) yana haifar da kuskure a cikin sabis na smtp kuma yana da alaƙa da rashin ingantaccen bincike akan bayanan da aka karɓa daga mai amfani yayin zaman SMTP kuma ana amfani dashi don ƙididdige girman buffer. A sakamakon haka, maharin zai iya samun nasarar rubuta bayanansa mai sarrafawa zuwa wurin ƙwaƙwalwar ajiya fiye da iyakokin da aka keɓe.
Rashin lahani na biyu (CVE-2023-42116) yana cikin mai kula da buƙatun NTLM kuma ana haifar da shi ta hanyar kwafin bayanan da aka karɓa daga mai amfani zuwa madaidaicin madaidaicin buffer ba tare da bincikar da ake buƙata don girman bayanin da aka rubuta ba.
Rashin lahani na uku (CVE-2023-42117) yana cikin tsarin smtp yana karɓar haɗi akan tashar tashar TCP 25 kuma yana haifar da rashin ingantaccen shigarwar shigarwa, wanda zai iya haifar da bayanan da aka ba da mai amfani da aka rubuta zuwa wurin ƙwaƙwalwar ajiya a waje da buffer da aka keɓe. .
Ana yiwa lahani alamar 0-day, i.e. ya kasance ba a gyara ba, amma rahoton ZDI ya bayyana cewa an sanar da masu haɓaka Exim matsalolin tun da farko. Canji na ƙarshe zuwa lambar lambar Exim an yi kwanaki biyu da suka gabata kuma har yanzu ba a bayyana lokacin da za a gyara matsalolin ba (har yanzu masana'antun rarraba ba su sami lokacin amsawa ba tun lokacin da aka bayyana bayanin ba tare da cikakkun bayanai ba sa'o'i da yawa da suka gabata). A halin yanzu, masu haɓaka Exim suna shirin fitar da sabon sigar 4.97, amma babu takamaiman bayani game da lokacin buga shi tukuna. Hanya guda tilo na kariyar da aka ambata a halin yanzu ita ce taƙaita samun dama ga sabis na SMTP na tushen Exim.
Baya ga raunin da aka ambata a sama, an kuma bayyana bayanai game da matsalolin da ba su da haɗari da yawa:
- CVE-2023-42118 lamba ce mai malala a cikin ɗakin karatu na libspf2 lokacin da ake tantance macro SPF. Rashin lahani yana ba ku damar fara ɓarna mai nisa na abubuwan ƙwaƙwalwar ajiya kuma ana iya amfani da su don tsara aiwatar da lambar ku akan sabar.
- CVE-2023-42114 karatu ne wanda ba a rufe ba a cikin mai sarrafa NTLM. Matsalar na iya haifar da abin da ke cikin ƙwaƙwalwar ajiya na aikin sabis na buƙatun hanyar sadarwa.
- CVE-2023-42119 wani rauni ne a cikin mai sarrafa dnsdb wanda ke haifar da zubar da ƙwaƙwalwa a cikin tsarin smtp.
source: budenet.ru