CVE-2007-3925

Name of the Vulnerable Software and Affected Versions: Ipswitch IMail Server 2006 versions prior to 2006.21

Description: The issue concerns multiple buffer overflows in the IMAP service, specifically in the imapd32.exe component. These overflows can be triggered by remote authenticated users through the Search or Search Charset command, potentially allowing the execution of arbitrary code.

Recommendations: For Ipswitch IMail Server 2006 versions prior to 2006.21, update to version 2006.21 or later to resolve the issue. As a temporary workaround, consider restricting access to the IMAP service until the update can be applied.