[原文]Multiple buffer overflows in the IMAP Groupware Mail server of Floosietek FTGate (FTGate4) 4.1 allow remote attackers to execute arbitrary code via long arguments to various IMAP commands, as demonstrated with the EXAMINE command.
A remote overflow exists in FTGate4. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted request containing an overly long argument to the IMAP EXAMINE command, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.
Upgrade to version 4.4.004 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.