4 matches found
CVE-1999-0098
CVE-1999-0098 refers to a buffer overflow in the SMTP HELO command of Sendmail , as described in multiple connected sources. The issue allows a remote attacker to hide activities and potentially compromise system state by overflowing the HELO handling. Connected documents confirm the affected com...
CVE-2023-4595
CVE-2023-4595 affects BVRP Software SLmail (Avanquest SLmail) server, specifically version 5.5.0.4433. The vulnerability is an information-disclosure flaw permitting a remote attacker to retrieve sensitive server-held files (credentials, configuration, application files) by appending certain URL ...
CVE-2023-4594
CVE-2023-4594 is a stored XSS vulnerability affecting BVRP Software SLmail (MailAdmin_dll.htm). The issue originates from the ability to inject a malicious JavaScript payload via GET and POST parameters in that file, enabling script execution in the context of affected web interfaces. The primary...
CVE-2023-4593
CVE-2023-4593 describes a path traversal vulnerability in BVRP Software SLmail. An authenticated remote user could bypass restrictions and enumerate files/directories outside the web root by manipulating the dodoc parameter in the /MailAdmin_dll.htm (MailAdmin dll.htm) entry, potentially exposing...