BVRP SLWebmail GUI Applications Denial Of Service Vulnerability

info
discussion
exploit
solution
references

BVRP SLWebmail GUI Applications Denial Of Service Vulnerability

SLWebmail has been reported prone to a denial of service vulnerability.

It has been reported that an attacker may remotely access, request and execute several applications that are stored in a sub directory contained in the SLWebmail webroot.

The attacker may initiate recursive requests for these executables and consume server resources this will eventually lead to a denial of service condition.