seattle_lab_software 関連製品全体の CVE とセキュリティ脆弱性情報を集約し、CVSS、EPSS、公開日、脆弱性情報データを掲載しています。
公開された問題は バッファオーバーフロー and vendor risk input validation に関連することが多く、vendor surface production workloads and vendor surface software deployment の文脈で vendor impact memory corruption and vendor impact unexpected behavior などの暴露リスクを伴う場合があります。
掲載データは公開脆弱性情報とセキュリティ公告に基づき、過去の暴露面と修補優先度の評価に利用できます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2008-1691 | Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (UDP service outage) via a large packet to UDP port 54. NOTE: some of these details are obtained from third party information. | [email protected] | 5.0 | 0.73% | 2008-04-07 | 2026-04-23 |
| CVE-2008-1690 | WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information. | [email protected] | 10.0 | 18.29% | 2008-04-07 | 2026-04-23 |
| CVE-2008-1689 | Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long request header in an HTTP request to TCP port 801. NOTE: some of these details are obtained from third party information. | [email protected] | 5.0 | 1.19% | 2008-04-07 | 2026-04-23 |
| CVE-2008-0152 | SLnet.exe in SeattleLab SLNet RF Telnet Server 4.1.1.3758 and earlier allows user-assisted remote attackers to cause a denial of service (crash) via unspecified telnet options, which triggers a NULL pointer dereference. NOTE: the crash is not user-assisted when the server is running in debug mode. | [email protected] | 4.3 | 0.69% | 2008-01-09 | 2026-04-23 |
| CVE-2004-0357 | Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpageadmin.dll or (3) loadpageuser.dll. | [email protected] | 10.0 | 5.87% | 2004-11-23 | 2026-04-16 |
| CVE-2004-0356 | Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version. | [email protected] | 10.0 | 7.57% | 2004-11-23 | 2026-04-16 |
| CVE-2003-0264 | Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server. | [email protected] | 7.5 | 55.21% | 2003-05-27 | 2026-04-16 |
| CVE-2000-0397 | The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. | [email protected] | 5.0 | 3.23% | 2000-05-15 | 2026-04-16 |
| CVE-1999-1017 | Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. | [email protected] | 7.5 | 0.47% | 1999-07-28 | 2026-04-16 |
| CVE-1999-0380 | SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user. | [email protected] | 4.6 | 0.09% | 1999-02-25 | 2026-04-16 |
| CVE-1999-0231 | Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote access. | [email protected] | 5.0 | 0.50% | 1999-01-01 | 2026-04-16 |
| CVE-1999-0102 | Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. | [email protected] | 7.5 | 0.68% | 1998-07-09 | 2026-04-16 |