Bvrp Software : Security Vulnerabilities, CVEs,
SLWebMail 3 on Windows systems allows remote attackers to identify the full path of the server via invalid requests to DLLs such as WebMailReq.dll, which reveals the path in an error message.
Max CVSS
5.0
EPSS Score
0.51%
Published
2003-05-27
Updated
2016-10-18
ShowGodLog.dll in SLWebMail 3 on Windows systems allows remote attackers to read arbitrary files by directly calling ShowGodLog.dll with an argument specifying the full path of the target file.
Max CVSS
5.0
EPSS Score
1.12%
Published
2003-05-27
Updated
2016-10-18
Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter to admin.dll, or (4) a long CompanyID parameter to globallogin.dll.
Max CVSS
7.5
EPSS Score
8.11%
Published
2003-05-27
Updated
2016-10-18
3 vulnerabilities found