Softalk Mail Server IMAP Denial Of Service Vulnerability Network Vulnerability

Summary

The host is running Softalk Mail Server, which is prone to denial of service vulnerability.

Impact

Successful exploitation crashes the affected server denying the service to legitimate users. Impact Level : Application

Solution

Upgrade to Softalk Mail Server version 8.6.0 or later, For updates refer to http://www.softalkltd.com/products/download_wm.asp

Insight

The issue is due to inadequate boundary checks on specially crafted IMAP commands. The service can by crashed sending malicious IMAP command sequences.

Affected

Softalk Mail Server versions 8.5.1 and prior on Windows (all)

References

http://secunia.com/advisories/31715/
http://www.securityfocus.com/archive/1/495896

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-4041

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:N/A:P

Related Vulnerabilities

Adobe Flash Media Server Remote Denial of Service Vulnerability (August-2011)
ejabberd XML Parsing Denial of Service Vulnerability (Windows)
EtherApe RPC Packet Processing Denial of Service Vulnerability
Dopewars Server 'REQUESTJET' Message Remote Denial of Service Vulnerability
avast! AntiVirus Multiple BOF Vulnerabilities (Linux)

Softalk Mail Server IMAP Denial of Service Vulnerability

Take action and discover your vulnerabilities