Signature Detail

HTTP: EasyMail Objects Connect

This signature detects attempts to use unsafe ActiveX controls in EasyMail. An attacker can create a malicious Web site containing Web pages with dangerous ActiveX controls, which if accessed by a victim, allows the attacker to gain control of the victim's client browser.

Extended Description

EasyMail Objects is prone to a remote stack-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied data prior to copying it to an insufficiently sized buffer. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely result in denial-of-service conditions. Versions prior to EasyMail Objects 6.5 are vulnerable. Spam Inspector 4.0.354 is vulnerable.

Affected Products

• Giant Company Spam Inspector 4.0.354
• Quiksoft EasyMail Objects 6.0
• Quiksoft EasyMail Objects 6.1
• Quiksoft EasyMail Objects 6.2
• Quiksoft EasyMail Objects 6.3
• Quiksoft EasyMail Objects 6.4

References

• BugTraq: 22583
• CVE: CVE-2007-1029
• URL: http://www.quiksoft.com
• URL: http://www.devtarget.org/easymail-advisory-09-2009.txt