CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-0615

Malware in sbrugna...

6.8CVSS6.4AI score0.01165EPSS

Exploits0References5

Prion•added 2007/01/31 11:28 a.m.•11 views

Code injection

The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the 1 AddSenderToWhitelist and 2 AddDomainToWhitelist functions...

6.8CVSS7.4AI score0.01165EPSS

Exploits0References4

NVD•added 2007/01/31 11:28 a.m.•10 views

CVE-2007-0617

6.8CVSS6.9AI score0.01165EPSS

Exploits0References4

CVE•added 2007/01/31 11:0 a.m.•46 views

CVE-2007-0617

The CVE-2007-0617 entry involves Earthlink TotalAccess’s SpamBlocker.dll ActiveX control, which is labeled “safe for scripting.” This misclassification enables a remote attacker to modify the spam‑blocker whitelist by invoking AddSenderToWhitelist or AddDomainToWhitelist, allowing arbitrary addre...

6.8CVSS6.9AI score0.01165EPSS

Exploits0References4Affected Software1