DBMail IMAP Service SQL Injection Vulnerability

info
discussion
exploit
solution
references

DBMail IMAP Service SQL Injection Vulnerability

Solution:
The vendor has released an updated version 1.2 of the software to address this issue. The fixed version may be downloaded here:

dbmail dbmail 1.0

dbmail dbmail-1.2.tgz
http://www.dbmail.org/tgz/dbmail-1.2.tgz

dbmail dbmail 1.1

dbmail dbmail-1.2.tgz
http://www.dbmail.org/tgz/dbmail-1.2.tgz