CVE-2008-1690

SLMail Pro <= 6.3.1.0 - Denial of Service via Long URI in HTTP Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-1690. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The provided text describes multiple remote denial-of-service and memory-corruption vulnerabilities in SLMail Pro 6.3.1.0, potentially allowing arbitrary code execution. It references a binary exploit but does not contain actual exploit code.

Description

WebContainer.exe 1.0.0.336 and earlier in SLMail Pro 6.3.1.0 and earlier allows remote attackers to cause a denial of service (memory corruption and daemon crash) or possibly execute arbitrary code via a long URI in HTTP requests to TCP port 801. NOTE: some of these details are obtained from third party information.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Luigi Auriemma · textdoswindows

https://www.exploit-db.com/exploits/31563

View Code ZIP pw:eip

The provided text describes multiple remote denial-of-service and memory-corruption vulnerabilities in SLMail Pro 6.3.1.0, potentially allowing arbitrary code execution. It references a binary exploit but does not contain actual exploit code.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: SLMail Pro 6.3.1.0

No auth needed

Prerequisites: Network access to the target SLMail Pro server

MITRE ATT&CK