Incredimail: >> Incredimail >> 2.0 Security Vulnerabilities
Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in the first argument.
CVSS Score
7.5
EPSS Score
0.035
Published
2013-08-25
Directory traversal vulnerability in IncrediMail version 1400185 and earlier allows local users to overwrite files on the local hard drive by appending .. (dot dot) sequences to filenames listed in the content.ini file.
CVSS Score
2.1
EPSS Score
0.001
Published
2001-09-20