EasyMail Objects IMAP4 Component Connect Method Remote Overflow
High Nessus Plugin ID 24355
SynopsisA COM object on the remote Windows host is affected by a buffer overflow vulnerability.
DescriptionEasyMail Objects, a set of COM objects for supporting email protocols, is installed on the remote Windows host.
The IMAP4 component of the version of the DjVu Browser Plug-in installed on the remote host reportedly is affected by a stack buffer overflow in the 'Connect' method that can be triggered with a 500+ character hostname. An attacker may be able to leverage this issue to execute arbitrary code on the remote host subject to the user's privileges.
SolutionInstall the latest version of EasyMail Objects 6.5 or later as that is rumoured to fix the issue.