Seattle Lab Software : Security Vulnerabilities, CVEs, (Code Execution)
WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.
Max CVSS
10.0
EPSS Score
20.52%
Published
2008-04-07
Updated
2017-08-08
Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpageadmin.dll or (3) loadpageuser.dll.
Max CVSS
10.0
EPSS Score
4.84%
Published
2004-11-23
Updated
2017-07-11
Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version.
Max CVSS
10.0
EPSS Score
4.74%
Published
2004-11-23
Updated
2017-10-10
CVE-2003-0264
Public exploit
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
Max CVSS
7.5
EPSS Score
24.22%
Published
2003-05-27
Updated
2021-02-24
4 vulnerabilities found