Vendor
Seattle Lab Software
Products
4
CVEs
12
Across products
12
Status
Private
Products
4- 5 CVEs
- 4 CVEs
- 2 CVEs
- 1 CVE
Recent CVEs
12| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2003-0264 | 0.07 | — | 0.55 | May 27, 2003 | Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server. | ||
| CVE-2008-1690 | 0.04 | — | 0.18 | Apr 7, 2008 | WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information. | ||
| CVE-2000-0397 | 0.03 | — | 0.04 | May 15, 2000 | The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. | ||
| CVE-2004-0356 | 0.01 | — | 0.08 | Nov 23, 2004 | Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version. | ||
| CVE-2008-1689 | 0.00 | — | 0.01 | Apr 7, 2008 | Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long request header in an HTTP request to TCP port 801. NOTE: some of these details are obtained from third party information. | ||
| CVE-2008-1691 | 0.00 | — | 0.01 | Apr 7, 2008 | Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (UDP service outage) via a large packet to UDP port 54. NOTE: some of these details are obtained from third party information. | ||
| CVE-2008-0152 | 0.00 | — | 0.01 | Jan 9, 2008 | SLnet.exe in SeattleLab SLNet RF Telnet Server 4.1.1.3758 and earlier allows user-assisted remote attackers to cause a denial of service (crash) via unspecified telnet options, which triggers a NULL pointer dereference. NOTE: the crash is not user-assisted when the server is running in debug mode. | ||
| CVE-2004-0357 | 0.00 | — | 0.06 | Nov 23, 2004 | Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpageadmin.dll or (3) loadpageuser.dll. | ||
| CVE-1999-1017 | 0.00 | — | 0.00 | Jul 28, 1999 | Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. | ||
| CVE-1999-0380 | 0.00 | — | 0.00 | Feb 25, 1999 | SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user. | ||
| CVE-1999-0231 | 0.00 | — | 0.01 | Jan 1, 1999 | Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote access. | ||
| CVE-1999-0102 | 0.00 | — | 0.01 | Jul 9, 1998 | Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. |