IMail 2006.23

Released December 5, 2007

Download:

IMail
http://ftp.ipswitch.com/ipswitch/product_support/IMail/imail200623.exe

IMail Plus
http://ftp.ipswitch.com/ipswitch/product_support/IMail/imail_plus200623.exe

IMail Premium
http://ftp.ipswitch.com/ipswitch/product_support/IMail/imail_premium200623.exe

If you are asked to enter your software license and do not have it visit our download center to retrieve it.

Requirements:

  • You must have a current license key for your specific version of IMail 2006 to install version 2006.23.
Note: If you are using a custom ODBC.dll file developed by a 3rd party vendor, contact the vendor for information about an updated ODBC.dll file for IMail Server. Failure to update the ODBC.dll file could result in a message being misdirected or users unable to access their account.

Summary:

This update fixes a variety of issues.

A new version of WorkgroupShare has been released v2.2 for IMail Premium users. See WorkgroupShare v2.2 Release Notes for more information.

Vulnerabilities

Ipswitch would like to thank Secunia Research for reporting the issue below that has now been removed:

[SA26905] The "IMail.exe" Client provided in the IMail Server contained a vulnerability due to a boundary error when processing emails with multipart MIME data, which could potentially compromise a user's system.

"IMail.exe" will no longer be delivered during installation.

Caution: It is recommended that existing installations remove "IMail.exe from the IMail directory. It has been determined that utilizing this feature could potentially corrupt mailboxes.

Web Client

  • Added logging to the API to track and capture system errors.
  • Added ability to send messages through SMTP servers that do not support authentication.
  • Fixed client issues causing "Attempted to read/write protected memory" errors.
  • Fixed users on virtual domains not being able to login.
  • Web Client can now handle external email addresses with RFC 2822 compliant special character strings.
  • Fixed issue with Autosuggest not working when contact with apostrophe in the email address existed. Contacts can now handle the following special characters in the email address: ! # $ % * / ? | ^ { } ` ~ & ' + - = _
  • Fixed issue with "Reply All" including the sender email address. Sender will no longer be included.

Services

  • IMAP. Fixed list "" inbox command which was returning two inbox folders, causing some clients to crash.
  • Fixed the inserted x-header for Premium Antispam to now be RFC compliant.
  • Potential buffer overflow issues relating to Active Directory have been fixed.

Install

DSN Configuration for WorkgroupShare will no longer be overwritten during an upgrade or repair. Specifically for WorkgroupShare users that have switched from Access to SQL database.