ID
VAR-201005-0430
TITLE
IncrediMail ImShExtU.dll ActiveX Control Remote Stack Overflow Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2010-0901
DESCRIPTION
IncrediMail is an email mail client. The ImShExtU.dll ActiveX control included with IncrediMail does not properly filter the input parameters submitted to the DoWebMenuAction() method. Submitting a long string can trigger a stack-based buffer overflow. An attacker could build a malicious web page to entice a user to access the vulnerability.
Trust: 0.6
sources:
CNVD: CNVD-2010-0901
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0901
AFFECTED PRODUCTS
| vendor: | incredimail | model: | incredimail | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0901
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2010-0901 | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0901
REFERENCES
| url: | http://www.corelan.be | Trust: 0.6 |
sources:
CNVD: CNVD-2010-0901
SOURCES
| db: | CNVD | id: | CNVD-2010-0901 |
LAST UPDATE DATE
2022-05-04T09:40:35.307000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2010-0901 | date: | 2010-05-19T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2010-0901 | date: | 2010-05-19T00:00:00 |