Description: FistFuXXer has reported a vulnerability in Ipswitch IMail Server/Collaboration Suite, which can be exploited by malicious users to cause a DoS (Denial of Service) and potentially to compromise a vulnerable system.
The vulnerability is caused due to a boundary error within the handling of the IMAP FETCH command. This can be exploited to cause a buffer overflow, which crashes the server and allows arbitrary code execution via an overly long argument.
The vulnerability has been reported in the following versions:
* Ipswitch Collaboration Suite 2006 Premium Edition
* Ipswitch Collaboration Suite 2006 Standard Edition
* IMail Secure Server 2006
* IMail Server 2006
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.