CVE-2007-3203
https://notcve.org/view.php?id=CVE-2007-3203
Stack-based buffer overflow in smtpdll.dll in the SMTP service in 602Pro LAN SUITE 2003 2003.0.03.0828 allows remote attackers to execute arbitrary code via an e-mail message with a long address. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Desbordamiento de búfer basado en pila en smtpdll.dll en el servicio SMTP en 602Pro LAN SUITE 2003 2003.0.03.0828 permite a atacantes remotos ejecutar código de su elección a través de un mensaje de correo electrónico con una dirección larga. NOTA: El origen de esta información es desconocido; los detalles son obtenidos solamente de información de terceras partes. • http://osvdb.org/37232 http://secunia.com/advisories/25429 http://www.kb.cert.org/vuls/id/445313 http://www.securityfocus.com/bid/24437 https://exchange.xforce.ibmcloud.com/vulnerabilities/34834 https://exchange.xforce.ibmcloud.com/vulnerabilities/34974 •
CVE-2004-0336
https://notcve.org/view.php?id=CVE-2004-0336
LAN SUITE Web Mail 602Pro allows remote attackers to gain sensitive information via the mail login form, which contains the path to the mail directory. • http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html http://marc.info/?l=bugtraq&m=107799540630302&w=2 http://www.securityfocus.com/bid/9781 https://exchange.xforce.ibmcloud.com/vulnerabilities/15350 •
CVE-2004-0337 – Software602 602Pro LAN Suite - Web Mail Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2004-0337
Cross-site scripting (XSS) vulnerability in LAN SUITE Web Mail 602Pro allows remote attackers to execute arbitrary script or HTML as other users via a URL to index.html, followed by a / (slash) and the desired script. NOTE: the vendor states that this bug could not be reproduced, so this issue may be REJECTed in the future. • https://www.exploit-db.com/exploits/23776 http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html http://marc.info/?l=bugtraq&m=107799540630302&w=2 http://www.securityfocus.com/bid/9777 https://exchange.xforce.ibmcloud.com/vulnerabilities/15351 •
CVE-2004-0335
https://notcve.org/view.php?id=CVE-2004-0335
LAN SUITE Web Mail 602Pro, when configured to use the "Directory browsing" feature, allows remote attackers to obtain a directory listing via an HTTP request to (1) index.html, (2) cgi-bin/, or (3) users/. • http://archives.neohapsis.com/archives/bugtraq/2004-03/0096.html http://marc.info/?l=bugtraq&m=107799540630302&w=2 http://www.securityfocus.com/bid/9780 https://exchange.xforce.ibmcloud.com/vulnerabilities/15349 •
CVE-2002-2152
https://notcve.org/view.php?id=CVE-2002-2152
The Czech edition of Software602's Web Server before 2002.0.02.0916 allows remote attackers to gain administrator privileges via direct HTTP requests to the /admin/ directory, which is not password protected. • http://online.securityfocus.com/archive/1/296119 http://www.iss.net/security_center/static/10408.php http://www.securityfocus.com/bid/6006 •