• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Hosting-new.com

Hébergement web, cloud et solutions personnalisées

  • Home
  • About

Hébergement CPanel sur SSD, offre Cloud

Un hébergement professionnel sur serveur Xeon Gold et SSD

Notification

What is Explicit Congestion Notification?

September 6, 2023 by Admin Leave a Comment

Linux Cpanel shared hosting: 600 GB disk space, 6 TB bandwidth, free domain, unlimited databases and ftp accounts, web hosting cheap and pro at Hostony

In network communications and server management, ensuring smooth data transmission is paramount. One of the mechanisms that play a crucial role in this is the Explicit Congestion Notification, or ECN….
Web Hosting Geeks’ Blog

Linux Cpanel shared hosting: 600 GB disk space, 6 TB bandwidth, free domain, unlimited databases and ftp accounts, web hosting cheap and pro at Hostony

Filed Under: Web Hosting Tagged With: Congestion, Explicit, Notification

Introducing Free SMS Notification Service

October 1, 2014 by Admin Leave a Comment

At WHUK, our aim has always been to offer the best web hosting solutions with the care, attention to detail and quality our customers have come to expect from us. Today, we are extremely excited to be announcing our new … Continue reading →

(Visited 5 times, 5 visits today)

Web Hosting UK Blog | Dedicated Servers VPS Hosting Technology Updates

Filed Under: VPS / Dedicated Servers Tagged With: Free, Introducing, Notification, Service

Exim Remote Memory Corruption Vulnerability Notification (CVE-2010-4344)

February 18, 2011 by Admin Leave a Comment

Summary

 A memory corruption vulnerability exists in Exim versions 4.69 and older (CVE-2010-4344). Exim is the mail transfer agent used by cPanel & WHM.

Security Rating

This update has been rated as Important by the cPanel Security team.

Description

A memory corruption vulnerability has been discovered in Exim.  This vulnerability may lead to arbitrary code execution with the privileges of the user executing the Exim daemon. cPanel previously released RPMs that mitigated the severity of the vulnerability on December 9, 2010 (CVE-2010-4345). This notification is for the release of new RPMs which remove the remote memory corruption vulnerability in its entirety. The vulnerability relies upon "rejected_header" being enabled (default setting) in the log_selector configuration.

Solution

To resolve and work around the issue on Linux systems, cPanel has issued new Exim RPMs.  Server Owners are strongly urged to upgrade to the following Exim RPM versions: 

Systems configured to use Maildir: Exim 4.69-26

Systems configured to use mbox (deprecated): Exim 4.63-5

Exim RPMs will be distributed through cPanel’s package management system. All cPanel & WHM servers receiving updates automatically will receive the updated Exim RPM during normal update and maintenance operations (upcp).  To begin an Exim update on cPanel systems immediately, run the following command as root:

/scripts/eximup

FreeBSD systems should be running Exim 4.72 by default, which is not affected by this issue.

FAQ

This notification covers CVE-2010-4344.

The notification release earlier on December 10, 2010 with the summary "A privilege escalation vulnerability exists in Exim, the mail transfer agent used by cPanel & WHM." covers CVE-2010-4345. At the time of the earlier announcement, the CVE had not been assigned.

References

Critical: Exim security update (CVE-2010-4345) – cPanel Inc.

Official Record CVE-2010-4344

Debian Bug Report for CVE-2010-4344

[exim-dev] Remote root vulnerability in Exim

Re: [exim-dev] Remote root vulnerability in Exim 

cPanel Inc.

Filed Under: Cpanel Tagged With: Corruption, CVE20104344, Exim, Memory, Notification, remote, vulnerability

Primary Sidebar

Made with love by Hosting-New