CVE-2010-5289

IncrediMail 2.0 - Buffer Overflow in Authenticate Method via Long String

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-5289. PoCs published by d3b4g.

AI-analyzed exploit summary This is a proof-of-concept exploit for a buffer overflow vulnerability in IncrediMail 2.0's ActiveX control (ImSpoolU.dll). The exploit triggers an ACCESS_VIOLATION by passing an overly long string to the 'Authenticate' method, demonstrating potential for arbitrary code execution.

Description

Buffer overflow in the Authenticate method in the INCREDISPOOLERLib.Pop ActiveX control in ImSpoolU.dll in IncrediMail 2.0 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a long string in the first argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by d3b4g · htmldoswindows

https://www.exploit-db.com/exploits/12030

View Code ZIP pw:eip

This is a proof-of-concept exploit for a buffer overflow vulnerability in IncrediMail 2.0's ActiveX control (ImSpoolU.dll). The exploit triggers an ACCESS_VIOLATION by passing an overly long string to the 'Authenticate' method, demonstrating potential for arbitrary code execution.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: IncrediMail 2.0

No auth needed

Prerequisites: IncrediMail 2.0 installed · ActiveX control enabled in the browser

MITRE ATT&CK

T1218 - System Binary Proxy Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/12030/

Scores

EPSS 0.0248

EPSS Percentile 82.5%

Details

CWE

CWE-119

Status published

Products (1)

incredimail/incredimail 2.0

Published Aug 25, 2013

Tracked Since Feb 18, 2026