Found by: Katatafish (karatatata{at}hush{dot}com)
software:PBEmail 7 ActiveX Edition
Vendor: http://www.perfectionbytes.com
vulnerability: Insecure method
SaveSenderToXml(XmlFilePath: BSTR); stdcall; in PBEmail7Ax.dll
Tested on Internet explorer 7 with Windows XP SP 2.
Thanks: str0ke