CVE-2003-0264 Information

Description

Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe (2) a long XTRN argument to slmail.exe (3) a long string to POPPASSWD or (4) a long password to the POP3 server.

Reference

http://marc.info/?l=bugtraq&m=105232506011335&w=2 http://marc.info/?l=ntbugtraq&m=105233360321895&w=2 http://www.nextgenss.com/advisories/slmail-vulns.txt