Arbitrary Code Execution via Crafted ssgp.dll in Pegasus Mail v4.72 build 572

Arbitrary Code Execution via Crafted ssgp.dll in Pegasus Mail v4.72 build 572

CVE-2017-9046 · MEDIUM Severity

AV:L/AC:M/AU:N/C:P/I:P/A:P

winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack.

Learn more about our Cis Benchmark Audit For Desktop Software.