+ Denial of Service SMTP crash with the EXPN/VRFY commands
+ Denial of Service IMAP crash, and possible overflow vulnerability from authenticated users (Professional and Enterprise versions)
Versions affected:
Standard version before 1.986
Professional version
before 3.14
Enterprise version before 3.14
If you are running older
versions of MailEnable, then this hotfix also applies to the following
versions:
Professional version before 1.87
Enterprise version before
1.44
Professional version before 2.52
Enterprise version before
2.52
Instructions:
Download and run the hotfix here: http://www.mailenable.com/hotfix/ME-10040.exe