axigen 1.2.6 up to and including 2.0.0b1 does not properly parse login credentials, which allows remote malicious users to cause a denial of service (NULL dereference and application crash) via a base64-encoded "*\x00" sequence on the imap port (143/tcp).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gecad technologies axigen mail server 1.2.6 |
||
gecad technologies axigen mail server 2.0.0b1 |