A local overflow exists in IPSwitch IMail SMTP daemon. The daemon fails to validate input to the IMail Mailing List handler code resulting in a buffer overflow. With a specially crafted request, an attacker can execute arbitrary code with system level privileges resulting in a loss of integrity and confidentiality.
Currently, there are no known workarounds to correct this issue. However, IPSwitch has released a patch to address this vulnerability.