Description: Foxmail 5 20042xfocusxfocusFoxmailby using code. Test environment : 5.0.300 win2k Explorer I tested before 4.x when I had found overflow vulnerabilities, but it was never on the first time down, and later also heard Foxmail5 overflow, but had not seen published. So nothing happened when they go out and look at the test and found the vulnerability in the past has been replaced, but a new one of the loopholes. The problem is that the inside of PunyLib.dll UrlToLocal function, which is estimated to handle a spam link library, when a mail is judged to be spam, they would call UrlToLocal to handle mail with a "From :" field, the processing stack overflow can lead to the implementation of the Italy code.
File list (Check if you may need any files):