Ipswitch IMail Web Service "HOST" Denial Of Service Vulnerability

Ipswitch IMail Web Service "HOST" Denial Of Service Vulnerability

IPSwitch IMail is an e-mail server which provides WWW (HTTP) E-mail services. By default this web service resides on port 8181 or 8383. Sending an HTTP request with an extremely long "HOST" field multiple times can cause the system hosting the service to become unresponsive. Each long request "kills" a thread without freeing up the memory used by it. By repeating this request, the system's resources can be used up completely.