This page lists publicly disclosed CVE vulnerabilities affecting bvrp_software slwebmail (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2003-0268 | SLWebMail 3 on Windows systems allows remote attackers to identify the full path of the server via invalid requests to DLLs such as WebMailReq.dll, which reveals the path in an error message. | [email protected] | 5.0 | 0.63% | 2003-05-27 | 2026-04-16 |
| CVE-2003-0267 | ShowGodLog.dll in SLWebMail 3 on Windows systems allows remote attackers to read arbitrary files by directly calling ShowGodLog.dll with an argument specifying the full path of the target file. | [email protected] | 5.0 | 0.87% | 2003-05-27 | 2026-04-16 |
| CVE-2003-0266 | Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter to admin.dll, or (4) a long CompanyID parameter to globallogin.dll. | [email protected] | 7.5 | 1.61% | 2003-05-27 | 2026-04-16 |