CVE-2007-0617 in Total Accessinfo

Summary

The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the (1) AddSenderToWhitelist and (2) AddDomainToWhitelist functions.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

01/30/2007

Disclosure

01/31/2007

Moderation

VulDB entry created

Entries

VDB-34742 (1)

CPE

ready

CWE

Unknown

CVSS

7.3

EPSS

0.00855

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0617
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0617
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0617/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!