EasyMail.AddAttachment.ActiveX.Code.Execution
Description
This indicates an attack attempt against a Buffer Overflow vulnerability in the EasyMail ActiveX control in emsmtp.dll.
The vulnerability is caused by an error when the vulnerable software handles a specially crafted argument to the "AddAttachment" method. It allows a remote attacker to execute arbitrary code.
Affected Products
EasyMail 6 is vulnerable, other versions may also be affected.
Impact
System Compromise.: Arbitrary code execution.
Recommended Actions
Currently we are not aware of any officially supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-03-07 | 14.567 | Sig Added |