Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone Networks GmbHOPENVAS:800535
HistoryMar 13, 2009 - 12:00 a.m.

QuikSoft EasyMail Objects ActiveX Control BOF Vulnerability

2009-03-1300:00:00
Copyright (C) 2009 Greenbone Networks GmbH
plugins.openvas.org
13

EPSS

0.292

Percentile

96.9%

JSON

This host is installed with QuikSoft EasyMail Objects ActiveX
Control and is prone to buffer overflow vulnerability.

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_quiksoft_easymail_obj_actvx_bof_vuln.nasl 5369 2017-02-20 14:48:07Z cfi $
#
# QuikSoft EasyMail Objects ActiveX Control BOF Vulnerability
#
# Authors:
# Nikita MR <[email protected]>
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_impact = "Attackers may exploit this issue by executing arbitrary code in the context
  of a Web page and can cause buffer overflow.
  Impact Level: Application";
tag_affected = "QuikSoft EasyMail MailStore with emmailstore.dll version 6.5.0.3 on Windows";
tag_insight = "Flaw exists in CreateStore method in emmailstore.dll file, which fails to
  perform adequate boundary checks on user-supplied data.";
tag_solution = "No solution or patch was made available for at least one year since
  disclosure of this vulnerability. Likely none will be provided anymore. General
  solution options are to upgrade to a newer release, disable respective features,
  remove the product or replace the product by another one
  For updates refer to http://www.quiksoft.com/";
tag_summary = "This host is installed with QuikSoft EasyMail Objects ActiveX
  Control and is prone to buffer overflow vulnerability.";

if(description)
{
  script_id(800535);
  script_version("$Revision: 5369 $");
  script_tag(name:"last_modification", value:"$Date: 2017-02-20 15:48:07 +0100 (Mon, 20 Feb 2017) $");
  script_tag(name:"creation_date", value:"2009-03-13 14:39:10 +0100 (Fri, 13 Mar 2009)");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2008-6447");
  script_bugtraq_id(32722);
  script_name("QuikSoft EasyMail Objects ActiveX Control BOF Vulnerability");
  script_xref(name : "URL" , value : "http://www.milw0rm.com/exploits/7402");
  script_xref(name : "URL" , value : "http://support.microsoft.com/kb/240797");
  script_xref(name : "URL" , value : "http://xforce.iss.net/xforce/xfdb/47207");

  script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"executable_version");
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Buffer overflow");
  script_dependencies("secpod_reg_enum.nasl");
  script_mandatory_keys("SMB/WindowsVersion");
  script_require_ports(139, 445);
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name:"solution_type", value:"WillNotFix");
  exit(0);
}


include("smb_nt.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(!get_kb_item("SMB/WindowsVersion")){
  exit(0);
}

if(!registry_key_exists(key:"SOFTWARE\Quiksoft\EasyMail Objects")){
  exit(0);
}

key = "SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\";
if(!registry_key_exists(key:key)) {
    exit(0);
}

foreach item (registry_enum_keys(key:key))
{
  emoName = registry_get_sz(key:key + item, item:"DisplayName");
  if("EasyMail Objects" >< emoName)
  {
    dllPath = registry_get_sz(key:key + item, item:"InstallLocation");
    if(dllPath != NULL)
    {
      dllPath = dllPath + "emmailstore.dll";
      share = ereg_replace(pattern:"([A-Z]):.*", replace:"\1$", string:dllPath);
      file = ereg_replace(pattern:"[A-Z]:(.*)", replace:"\1", string:dllPath);

      dllVer = GetVer(file:file, share:share);
      if(version_is_less_equal(version:dllVer, test_version:"6.5.0.3")){
        security_message(0);
      }
    }
    exit(0);
  }
}

Related

openvas 1
cvelist 1
cve 1
exploitdb 2
prion 1
nvd 1
openvas
openvas
QuikSoft EasyMail Objects ActiveX Control BOF Vulnerability
2009-03-13 00:00:00
cvelist
cvelist
CVE-2008-6447
2009-03-09 14:00:00
cve
cve
CVE-2008-6447
2009-03-09 14:30:00
exploitdb
exploitdb
EasyMail - ActiveX &#039;emmailstore.dll 6.5.0.3&#039; Remote Buffer Overflow
2008-12-09 00:00:00
EasyMail Quicksoft 6.0.2.0 - CreateStore ActiveX Code Execution (PoC)
2009-09-15 00:00:00
prion
prion
Buffer overflow
2009-03-09 14:30:00
nvd
nvd
CVE-2008-6447
2009-03-09 14:30:00

EPSS

0.292

Percentile

96.9%

JSON
Related for OPENVAS:800535
openvas1cvelist1cve1exploitdb2prion1nvd1