Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2007-0615

Malware in sbrugna...

6.8CVSS6.4AI score0.01165EPSS
Exploits0References5
Prion
Prion
added 2007/01/31 11:28 a.m.12 views

Code injection

The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the 1 AddSenderToWhitelist and 2 AddDomainToWhitelist functions...

6.8CVSS7.4AI score0.01165EPSS
Exploits0References4
NVD
NVD
added 2007/01/31 11:28 a.m.10 views

CVE-2007-0617

The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the 1 AddSenderToWhitelist and 2 AddDomainToWhitelist functions...

6.8CVSS6.9AI score0.01165EPSS
Exploits0References4
Cvelist
Cvelist
added 2007/01/31 11:0 a.m.16 views

CVE-2007-0617

The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the 1 AddSenderToWhitelist and 2 AddDomainToWhitelist functions...

6.9AI score0.01165EPSS
Exploits0References4
CVE
CVE
added 2007/01/31 11:0 a.m.47 views

CVE-2007-0617

The CVE-2007-0617 entry involves Earthlink TotalAccess’s SpamBlocker.dll ActiveX control, which is labeled “safe for scripting.” This misclassification enables a remote attacker to modify the spam‑blocker whitelist by invoking AddSenderToWhitelist or AddDomainToWhitelist, allowing arbitrary addre...

6.8CVSS6.9AI score0.01165EPSS
Exploits0References4Affected Software1
securityvulns
securityvulns
added 2007/01/25 12:0 a.m.39 views

Earthlink TotalAccess AtciveX protection bypass

It's possible to manage sender and domain whitelists...

6.8CVSS2.9AI score0.01165EPSS
Exploits0References1
securityvulns
securityvulns
added 2007/01/25 12:0 a.m.27 views

[Full-disclosure] Earthlink TotalAccess ActiveX Unsafe Methods Vulnerability

Title: ------------------- Earthlink TotalAccess ActiveX Unsafe Methods Vulnerability Vendor Contacted: ------------------- now-ish. Background Info: ------------------- Earthlink TotalAccess Download Site: http://www.earthlink.net/software/free/totalaccess/highspeed/ Description:...

0.3AI score
Exploits0
Rows per page
Query Builder