Summary
This host is installed with QuikSoft EasyMail Objects ActiveX Control and is prone to buffer overflow vulnerability.
Impact
Attackers may exploit this issue by executing arbitrary code in the context of a Web page and can cause buffer overflow.
Impact Level: Application
Solution
No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one For updates refer to http://www.quiksoft.com/
Insight
Flaw exists in CreateStore method in emmailstore.dll file, which fails to perform adequate boundary checks on user-supplied data.
Affected
QuikSoft EasyMail MailStore with emmailstore.dll version 6.5.0.3 on Windows
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2008-6447 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities