Aggregates CVE and security vulnerability intelligence across all seattle_lab_software-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk input validation and related problems; some flaws may lead to vendor impact memory corruption and vendor impact unexpected behavior.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2008-1691 | Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (UDP service outage) via a large packet to UDP port 54. NOTE: some of these details are obtained from third party information. | [email protected] | 5.0 | 0.73% | 2008-04-07 | 2026-04-23 |
| CVE-2008-1690 | WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information. | [email protected] | 10.0 | 18.29% | 2008-04-07 | 2026-04-23 |
| CVE-2008-1689 | Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long request header in an HTTP request to TCP port 801. NOTE: some of these details are obtained from third party information. | [email protected] | 5.0 | 1.19% | 2008-04-07 | 2026-04-23 |
| CVE-2008-0152 | SLnet.exe in SeattleLab SLNet RF Telnet Server 4.1.1.3758 and earlier allows user-assisted remote attackers to cause a denial of service (crash) via unspecified telnet options, which triggers a NULL pointer dereference. NOTE: the crash is not user-assisted when the server is running in debug mode. | [email protected] | 4.3 | 0.69% | 2008-01-09 | 2026-04-23 |
| CVE-2004-0357 | Stack-based buffer overflows in SL Mail Pro 2.0.9 allow remote attackers to execute arbitrary code via (1) user.dll, (2) loadpageadmin.dll or (3) loadpageuser.dll. | [email protected] | 10.0 | 5.87% | 2004-11-23 | 2026-04-16 |
| CVE-2004-0356 | Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version. | [email protected] | 10.0 | 7.57% | 2004-11-23 | 2026-04-16 |
| CVE-2003-0264 | Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server. | [email protected] | 7.5 | 55.21% | 2003-05-27 | 2026-04-16 |
| CVE-2000-0397 | The EMURL web-based email account software encodes predictable identifiers in user session URLs, which allows a remote attacker to access a user's email account. | [email protected] | 5.0 | 3.23% | 2000-05-15 | 2026-04-16 |
| CVE-1999-1017 | Seattle Labs Emurl 2.0, and possibly earlier versions, stores e-mail attachments in a specific directory with scripting enabled, which allows a malicious ASP file attachment to execute when the recipient opens the message. | [email protected] | 7.5 | 0.47% | 1999-07-28 | 2026-04-16 |
| CVE-1999-0380 | SLMail 3.1 and 3.2 allows local users to access any file in the NTFS file system when the Remote Administration Service (RAS) is enabled by setting a user's Finger File to point to the target file, then running finger on the user. | [email protected] | 4.6 | 0.09% | 1999-02-25 | 2026-04-16 |
| CVE-1999-0231 | Buffer overflow in IP-Switch IMail and Seattle Labs Slmail 2.6 packages using a long VRFY command, causing a denial of service and possibly remote access. | [email protected] | 5.0 | 0.50% | 1999-01-01 | 2026-04-16 |
| CVE-1999-0102 | Buffer overflow in SLmail 3.x allows attackers to execute commands using a large FROM line. | [email protected] | 7.5 | 0.68% | 1998-07-09 | 2026-04-16 |