Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in Supervisor Report Center in SL Mail Pro 2.0.9 and earlier allows remote attackers to execute arbitrary code via an HTTP request with a long HTTP sub-version.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Seattle Lab Software SLMail Pro远程缓冲区溢出漏洞
Vulnerability Description
SLMail Pro是一款适合于中小型企业的EMAIL解决方案。 SLMail Pro不正确处理恶意HTTP请求,远程攻击者可以利用这个漏洞进行缓冲区溢出攻击,可能以MAIL进程权限在系统上执行任意指令。 SLMail Pro包含的管理员报告中心是WEB服务程序,WEB服务默认监听TCP 801端口。攻击者可以通过提交一个包含超长HTTP子版本(HTTP/1.X)HTTP请求,当这个次版本数据拷贝到堆栈缓冲区时可触发缓冲区溢出,精心构建提交数据可能以MAIL进程权限在系统上执行任意指令。
CVSS Information
N/A
Vulnerability Type
N/A