Millions of Exim servers vulnerable to root-granting exploit

-Exim runs on 57% of the internet's email servers
-BinaryEdge lists 5.2m vulnerable Exim servers (not all vulnerable, though)
-vulnerability is RCE with root priv
-cPanel update also outhttps://t.co/JMLuGdc6WS pic.twitter.com/NqwIvuiof4

— Catalin Cimpanu (@campuscodi) September 7, 2019

Millions of #Exim #servers vulnerable to root-granting #exploit #security #email #emailserver #vulnerability #tls #linux #kernel https://t.co/61WDgCK8DE

— WebsiteHostingReview.org (@SiteHostReviews) September 8, 2019

Millions of Exim servers vulnerable to root-granting exploit #cloudsecurity https://t.co/hwIjuaQw67

— Claudia Martín (@CLAVDIAmartin) September 8, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/ya1oaI6PP3 #Infosec pic.twitter.com/sBRyPS2Klh

— #AI (@AI__TECH) September 8, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/SF6A6dcNOT by @campuscodi

— ZDNet (@ZDNet) September 7, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/0Q8mlInr4C

— CYB3R P4ND4 (@Panda_Lv0) September 7, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/hD3MMaNKYl

— ₛₑcᵤᵣₑ Cybₑᵣ ₛₒₗᵤₜᵢₒₙ (@Sec_Cyber) September 7, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/crjFHCwBQJ

— The Cyber Security Hub (@TheCyberSecHub) September 7, 2019

Leute, eure Mailserver mit #Exim brauchen dringend einen Patch! Millions of Exim servers vulnerable to root-granting exploit https://t.co/Ke2eDuvBHC

— Markus Sulzbacher (@msulzbacher) September 8, 2019

Exim has published a fix for CVE-2019-15846. All production versions of cPanel & WHM have been patched. See here for details: https://t.co/iR9ptUldRg

— cPanel (@cPanel) September 6, 2019

Exim has published a fix for CVE-2019-15846. All production versions of cPanel & WHM have been patched. See here for details: https://t.co/iR9ptUldRg

— cPanel (@cPanel) September 6, 2019

If you run Exim (or are unfortunate enough to be using cPanel in general where Exim is usually found) you'd better patch ASAP. Remote RCE as root. Seems trivial to exploit, too. (at least this is one time AWS is not in top 10?)https://t.co/fgSNckhp84 https://t.co/WxITSDfYSI pic.twitter.com/5lcmdZMLr3

— boB Rudis (@hrbrmstr) September 7, 2019

If you're running your own cPanel, make sure you update! https://t.co/jlCKcXmlxJ

— RamNode (@RamNode) September 6, 2019

#CyberSecurity: A #malware targeting #Linux rather than #Windows! Since last July a #Ransomware with the name #Lilocked has exploited CVE-2019-15846 impacting Linux Exim mail server flaw which allow Remote Code Execution. #Hacked#Hacking#InfoSechttps://t.co/wtQEFzH9vR

— Chief InfoSec Office (@CISO_Thoughts) September 8, 2019

WARNING for big #Vulnerability! CVE-2019-15846 #Exim #mail server #flaw allows #Remote #CodeExecution #cybersec #cybersecurity #infosec #security #threatintel #hackers #cybercrime #cybercriminals #fraud #dataprotection #privacy #databreach #cyberattack https://t.co/Fsume9w8tC

— Jiniba (@JinibaBD) September 6, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/xYdM0pIOOr via @ZDNet & @campuscodi I use Exim myself. I fixed it as soon as I found out about this hole. It's Nasty. So, fix it, fix it now.

— S. Vaughan-Nichols (@sjvn) September 9, 2019

Millions of Exim servers vulnerable to root-granting exploit https://t.co/aB9zDAu3DP#Cybersecurity #cybercrime #cyberattacks #hacker #hack #breach #phishing #dos #ransomware #malware #virus #apt #pii #nist #fcc #finra #hipaa #pci pic.twitter.com/1ycZ1UMWya

— Rich Tehrani (@rtehrani) September 8, 2019

UPDATE
Patch Exim 4 immediately[1] as a root compromise vulnerability[2] is being exploited[3] in the wild.
[1] https://t.co/XWQzvO00VD
[2] https://t.co/QLNiUtRo0s
[3] https://t.co/UQxkMguwQV

— AusCERT (@AusCERT) September 9, 2019

CVE-2019-15846 Exim mail server flaw allows Remote Code Execution #vulnerability https://t.co/8K7llHIeQc pic.twitter.com/rFdijvZhXf

— TEAM CYMRU (@teamcymru) September 8, 2019