Multiple buffer overflows in SLWebMail 3 on Windows systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a long Language parameter to showlogin.dll, (2) a long CompanyID parameter to recman.dll, (3) a long CompanyID parameter to admin.dll, or (4) a long CompanyID parameter to globallogin.dll.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Slwebmail | Bvrp_software | 3.0 (including) | 3.0 (including) |