IA eMailServer IMAP4 LIST Command Format String Remote DoS
Medium Nessus Plugin ID 18570
SynopsisThe remote mail server is affected by a format string vulnerability.
DescriptionThe remote host is running True North Software's IA eMailServer, a messaging system for Windows.
The remote version of IA eMailServer suffers from a format string vulnerability leading to a denial of service that can be exploited by an authenticated user when sending a specially crafted IMAP LIST command.
SolutionUpgrade to IA eMailServer 5.3.4 Build 2019 or greater.