Critical Vulnerability in Exim Mail Transfer Agent Allows Remote Code Execution

A critical vulnerability in certain configurations of the Exim open-source mail transfer agent allows unauthenticated remote attackers to execute arbitrary code. The flaw affects Exim versions prior to the latest patched release, though no specific CVE ID or version range was disclosed. The issue was identified in configurations that may be common in default or widely used setups, though exact technical conditions were not detailed. Exploitation does not require authentication, increasing the risk of widespread attacks targeting vulnerable mail servers. No timeline for disclosure or patch availability was provided in the report.