CVE-2012-5671

Name of the Vulnerable Software and Affected Versions Exim versions 4.70 through 4.80

Description The issue is a heap-based buffer overflow in the dkim exim query dns txt function, which can be exploited by remote attackers to execute arbitrary code. This can occur when DKIM support is enabled and specific settings, acl smtp connect and acl smtp rcpt, are not configured to disable DKIM verification. The attack vector involves an email from a malicious DNS server.

Recommendations For Exim versions 4.70 through 4.80, consider disabling DKIM support or setting acl smtp connect and acl smtp rcpt to "warn control = dkim disable verify" to mitigate the risk of exploitation.