Oracle Document Capture EasyMail ActiveX Control Vulnerability
Publish Date: 21 juillet 2015
Gravité: : Critique
Identifiant(s) CVE: : CVE-2007-4607
Date du conseil: 21 juillet 2015
Description
Buffer overflow in the EasyMailSMTPObj ActiveX control in emsmtp.dll 6.0.1 in the Quiksoft EasyMail SMTP Object, as used in Postcast Server Pro 3.0.61, allows remote attackers to execute arbitrary code via a long argument to the SubmitToExpress method, a different vulnerability than CVE-2007-1029.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1003829
Trend Micro Deep Security DPI Rule Name: 1003829 - Oracle Document Capture EasyMail ActiveX Control Vulnerability
Affected software and version:
- Gate Comm Software Postcast Server Pro 3.0.61
- Quicksoft EasyMail Objects unknown