cpe:/a:netwin:surgemail:3.9e CVE-2008-7182 2009-09-08T06:30:01.733-04:00 2017-09-28T21:33:33.497-04:00 4.0 NETWORK LOW SINGLE_INSTANCE NONE NONE PARTIAL http://nvd.nist.gov 2009-09-08T08:27:00.000-04:00 BUGTRAQ 20080917 [AJECT] SurgeMail IMAP 3.9e vulnerability BID 30000 EXPLOIT-DB 5968 MISC http://www.netwinsite.com/surgemail/help/updates.htm Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 and CVE-2008-1498. NOTE: due to lack of details, it is not certain whether this is the same issue as CVE-2008-2859.