IPS Protection for 21Nails Exim Vulnerability

Benedikt_Weissl — Mon, 10 May 2021 09:28:59 GMT

Hey Guys,

there are currently some critical vulnerabilities for the exim mail server out there:

https://blog.qualys.com/vulnerabilities-research/2021/05/04/21nails-multiple-vulnerabilities-in-exim-mail-server

Does anybody now the eta for an IPS protection covering these vulnerabilities?

cheers,

Re: IPS Protection for 21Nails Exim Vulnerability

_Val_ — Mon, 10 May 2021 09:47:22 GMT

I have checked the article you are referring to, and the mentioned CVEs, such as CVE-2020-28017 and others, are still listed by NDV as "undergoing analysis". They are also not even rated yet, which indicates they are reported quite recently, probably within the last day or two, and not much of information is actually published for them yet.

Without details about the vulnerabilities: POC exploits and other tech details, it is virtually impossible to provide protection.

Mind, this is not an official answer. Best is to open a TAC request and mention there all CVEs you need IPS protection for, asking for ETA on those.

topic IPS Protection for 21Nails Exim Vulnerability in General Topics

IPS Protection for 21Nails Exim Vulnerability

Re: IPS Protection for 21Nails Exim Vulnerability