Back to CVE Browser

CVE-2008-1690

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0440%

EPSS Percentile0.53th

PublishedApr 7, 2008

Last ModifiedApr 23, 2026

Vulnerability Description

WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦

Seattle Lab Software

Slmail Pro

<= 6.3.1.0

References & Advisories

🔗 http://aluigi.org/poc/slmaildos.zip

🔗 http://secunia.com/advisories/29614

🔗 http://www.securityfocus.com/bid/28505

🔗 http://www.vupen.com/english/advisories/2008/1039/references

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/41531

🔗 http://aluigi.org/poc/slmaildos.zip

🔗 http://secunia.com/advisories/29614

🔗 http://www.securityfocus.com/bid/28505

Related Vulnerabilities

CVE-2008-16895.0

Stack consumption vulnerability in WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attacker...

CVE-2008-16915.0

Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (UD...

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...