CVE-2007-1029
published 2007-02-21CVE-2007-1029: Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6.5 allows remote attackers to execute arbitrary…
PriorityP347high7.6CVSS 2.0
AVNACHAuNCCICAC
EXPLOIT
EPSS
7.44%
93.7th percentile
Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6.5 allows remote attackers to execute arbitrary code via a long host name.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| gate_comm_software | postcast_server_pro | — | — |
| quicksoft | easymail_objects | <= 6.4 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p94q-cj35-2pgh: Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6
ghsa_unreviewed·2022-05-01
CVE-2007-1029 [HIGH] GHSA-p94q-cj35-2pgh: Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6
Stack-based buffer overflow in the Connect method in the IMAP4 component in Quiksoft EasyMail Objects before 6.5 allows remote attackers to execute arbitrary code via a long host name.
GHSA
GHSA-rff5-g5w3-xp43: Buffer overflow in the EasyMailSMTPObj ActiveX control in emsmtp
ghsa_unreviewed·2022-05-01·CVSS 7.6
CVE-2007-4607 [HIGH] CWE-119 GHSA-rff5-g5w3-xp43: Buffer overflow in the EasyMailSMTPObj ActiveX control in emsmtp
Buffer overflow in the EasyMailSMTPObj ActiveX control in emsmtp.dll 6.0.1 in the Quiksoft EasyMail SMTP Object, as used in Postcast Server Pro 3.0.61 and other products, allows remote attackers to execute arbitrary code via a long argument to the SubmitToExpress method, a different vulnerability than CVE-2007-1029. NOTE: this may have been fixed in version 6.0.3.15.
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/24199http://security-assessment.com/files/advisories/easymail_advisory.pdfhttp://securityreason.com/securityalert/2277http://www.osvdb.org/33208http://www.securityfocus.com/archive/1/460237/100/0/threadedhttp://www.securityfocus.com/bid/22583http://www.vupen.com/english/advisories/2007/0634https://exchange.xforce.ibmcloud.com/vulnerabilities/32540http://secunia.com/advisories/24199http://security-assessment.com/files/advisories/easymail_advisory.pdfhttp://securityreason.com/securityalert/2277http://www.osvdb.org/33208http://www.securityfocus.com/archive/1/460237/100/0/threadedhttp://www.securityfocus.com/bid/22583http://www.vupen.com/english/advisories/2007/0634https://exchange.xforce.ibmcloud.com/vulnerabilities/32540
2007-02-21
Published