EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
BID:25467
Info
EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 25467 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-4607 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 28 2007 12:00AM |
| Updated: | Apr 26 2013 04:50PM |
| Credit: | rgod is credited with the discovery of this issue. |
| Vulnerable: |
Quiksoft EasyMail Objects 'emsmtp.dll' 6.0.1 PostCast PostCast Server Pro 3.0.61 Oracle Document Capture 10.1.3.5.0 |
| Not Vulnerable: | |
Discussion
EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
EasyMail Objects 'emsmtp.dll' ActiveX control is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.
These versions are vulnerable:
QuickSoft EasyMail Objects 'emsmtp.dll' 6.0.1
PostCast Server Pro 3.0.61
Other versions may also be affected.
EasyMail Objects 'emsmtp.dll' ActiveX control is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer.
Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application using the ActiveX control (typically Internet Explorer). Failed exploit attempts likely result in denial-of-service conditions.
These versions are vulnerable:
QuickSoft EasyMail Objects 'emsmtp.dll' 6.0.1
PostCast Server Pro 3.0.61
Other versions may also be affected.
Exploit / POC
EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
The following exploits are available:
The following exploits are available:
Solution / Fix
EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
EasyMail Objects EMSMTP.DLL ActiveX Control Remote Buffer Overflow Vulnerability
References:
References:
- Borland Homepage (Borland)
- Microsoft Knowledge Base Article 240797 (Microsoft)
- PostCast Server Homepage (PostCast)
- Quiksoft Homepage (Quiksoft)
- VU#281977 Quiksoft EasyMail SMTP ActiveX control stack buffer overflow vulnerabi (US-CERT)