SurgeMail IMAP Command Unspecified Denial of Service Vulnerability

info
discussion
exploit
solution
references

SurgeMail IMAP Command Unspecified Denial of Service Vulnerability

SurgeMail is prone to a remote denial-of-service vulnerability caused by an unspecified error when handling certain IMAP commands.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users.

The issue affects versions prior to SurgeMail 3.9g2.