CVE-2008-3606

Name of the Vulnerable Software and Affected Versions Qbik WinGate versions 6.2.2.1137 and earlier

Description A heap-based buffer overflow issue exists in the IMAP service, potentially allowing remote authenticated users to cause a denial of service or possibly execute arbitrary code by providing a long argument to the LIST command.

Recommendations For Qbik WinGate versions 6.2.2.1137 and earlier, consider restricting access to the IMAP service until a fix is available, and avoid using long arguments with the LIST command to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.