Filtered by vendor Earthlink Subscriptions
Filtered by product Total Access Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2007-0617 1 Earthlink 1 Total Access 2024-11-21 N/A
The SpamBlocker.dll ActiveX control in Earthlink TotalAccess is marked "safe for scripting," which allows remote attackers to add arbitrary e-mail addresses and domains to the spam blocker whitelist via the (1) AddSenderToWhitelist and (2) AddDomainToWhitelist functions.