HighCheck or Attack Name: imapd Core Vulnerability
IMAP-4.1BETA from the University of Washington's IMAP 4.1 toolkit contains a vulnerability that allows a remote attacker to cause the service to core dump. The core file contains the shadow password file, which can then be used to break into accounts on the system. The attacker is required to have an account on the system to exploit this hole.
Upgrade to the latest stable IMAP server package available from your vendor.
L0pht Security Advisory, imapd (imap-4.1BETA from the IMAP 4.1 toolkit from University of Washington), http://www.l0pht.com/advisories/imapd.txt
