Intrusion Prevention

IMAP.LIST.Command.Format.String

Description

Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051, allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.

Affected Products

True North Software IA eMailServer Corporate Edition 5.2.2 Build: 1051

Impact

Denial of service.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.
http://www.tnsoft.com

CVE References

CVE-2005-2083