Thursday, November 26, 20:59
Home security New error in OpenBSD SMTP Server threatens Linux Distros

New error in OpenBSD SMTP Server threatens Linux Distros

Security researchers have discovered a new critical error in OpenSMTPD e-mail server. A hacker could remotely exploit this error to execute "shell" commands as root on an operating system. OpenSMTPD is included in many operating system-based systems Unix, such as FreeBSD, NetBSD, MacOSThe Linux (Alpine, Arch, Debian, Fedora, CentOS). This is a bug that has been around since late 2015, according to Qualys researchers. This remote code execution error, which is identified as CVE-2020-8794, exists in the default installation of OpenSMTPD. In addition, a Proof-of-concept has been created (PoC) operating code to be released on February 26. OpenBSD SMTP Server Linux Distros- error

Qualys researchers also explain that root permissions can only be exploited in OpenSMTPD versions released after May 2018. In earlier versions, "shell" commands can be executed as non-roots.Qualys for OpenBSD SMTP Server Linux Distros- error

PoC is ready for release. There are two possible exploitation scenarios. From the customer side, the glitch Remote can be exploited if OpenSMTPD has the default configuration. By default, the installation receives messages from local users and transfers them to remote servers.Proof-of-concept - PoC

The exploitation on the part server is possible when the attacker connects to the OpenSMTPD server and sends the email it creates bounce. When OpenSMTPD reconnects, the attacker can benefit from client vulnerability.

The PoC created by Qualys has been successfully tested in the current OpenBSD 6.6, OpenBSD 5.9, Debian 10, Debian 11 and Fedora 31. System administrators are invited to implement the latest patches.

The recovery is provided in OpenSMTPD 6.6.4p1, in which the developer recommends installing it as soon as possible. Finally, in OpenBSD, binary fixes are available, running the syspatch command and confirming that OpenSMTPD was restarted.


Please enter your comment!
Please enter your name here


Which are the countries with the most economical internet?

Although the Internet is available in almost every country in the world, the cost of subscription, speeds and salaries of citizens ...

How to choose which extensions will appear in the Firefox toolbar

If you are using extensions with Mozilla Firefox and want to add or remove some extension icons from the toolbar, you can ...

WhatsApp OTP Scam: steps to avoid hackers

WhatsApp is gaining more and more reputation as one of the most used mobile messaging applications worldwide, with more users ...

Sophos notifies some customers that their personal information has been exposed

The British cybersecurity and hardware company Sophos sent an email to some of its customers to inform them that their personal ...

A $ 6 million fine was imposed on Facebook for data sharing

Facebook has been fined 6,7 billion won (about $ 6 million) for sharing user data from Korea without ...

How to turn off "Blood Oxygen Monitoring" on the Apple Watch

Apple Watch Series 6 and newer versions come with "blood oxygen monitoring" function. It records even in the background the ...

Ransomware attack hits Baltimore school district!

The Baltimore School District was attacked by ransomware on Nov. 25 and shut down its affected network systems. THE...

Google Chrome: Execute commands via the address bar

Google has released a new feature in Google Chrome 87 that lets you run commands from the address bar.

Belden: Network device maker under cyber attack!

The manufacturer of network devices "Belden" was attacked by cyber, as a result of which the hackers behind it stole files containing information ...

Zero-day error in Windows 7 and Server 2008 receives free patch

A local rights scaling vulnerability (LPE) affecting all Windows 7 and Server 2008 R2 devices has received a free and temporary ...