CVE-2003-0264 – Seattle Lab Mail (SLmail) 5.5 - POP3 'PASS' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-0264
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server. Múltiples desbordamientos de búfer en SLMail 5.1.0.4420 permite que atacantes remotos ejecuten código arbitrario mediante (1) un argumento EHLO largo a slmail.exe, (2) un argumento XTRN largo a slmail.exe, (3) una cadena larga para POPPASSWD, o (4) un password largo para el servidor POP3. • https://github.com/mednic/slmail-exploit https://www.exploit-db.com/exploits/638 https://www.exploit-db.com/exploits/643 https://www.exploit-db.com/exploits/646 https://www.exploit-db.com/exploits/16399 https://github.com/nobodyatall648/CVE-2003-0264 https://github.com/war4uthor/CVE-2003-0264 https://github.com/adenkiewicz/CVE-2003-0264 https://github.com/pwncone/CVE-2003-0264-SLmail-5.5 http://marc.info/?l=bugtraq&m=105232506011335&w=2 http://marc.info/ •
CVE-1999-0380
https://notcve.org/view.php?id=CVE-1999-0380
SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user. • http://marc.info/?l=bugtraq&m=91996412724720&w=2 http://marc.info/?l=ntbugtraq&m=91999015212415&w=2 http://marc.info/?l=ntbugtraq&m=92110501504997&w=2 http://www.securityfocus.com/bid/497 https://exchange.xforce.ibmcloud.com/vulnerabilities/5392 •
CVE-1999-0231
https://notcve.org/view.php?id=CVE-1999-0231
Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote access. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0231 •
CVE-1999-0102
https://notcve.org/view.php?id=CVE-1999-0102
Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0102 •