CVE-2008-1690

EUVD-2008-1691
WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801.  NOTE: some of these details are obtained from third party information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
seattle_lab_softwareslmail_pro
𝑥
≤ 6.3.1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://aluigi.org/poc/slmaildos.zip
http://secunia.com/advisories/29614
http://www.securityfocus.com/bid/28505
http://www.vupen.com/english/advisories/2008/1039/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41531
http://aluigi.org/poc/slmaildos.zip
http://secunia.com/advisories/29614
http://www.securityfocus.com/bid/28505
http://www.vupen.com/english/advisories/2008/1039/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41531