← back
CVE-2003-0264

CVE-2003-0264

EPSS 71.5%
Vexday Risk Score
60Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 71.5%KEV nãoPoC públicaNuclei Metasploit simPatch
Lifecycle
07 May 2003Metasploit module available
08 May 2003Published on NVD
18 Nov 2004Public PoC
Weaponization speed
560 daysto first PoC
Recommendation: Plan a near-term fix — a public PoC already exists.
Multiple buffer overflows in SLMail 5.1.0.4420 allows remote attackers to execute arbitrary code via (1) a long EHLO argument to slmail.exe, (2) a long XTRN argument to slmail.exe, (3) a long string to POPPASSWD, or (4) a long password to the POP3 server.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.