Sack-based buffer overflow in the IMAP server in Alt-N Technologies MDaemon 9.6.4 allows remote authenticated users to execute arbitrary code via a FETCH command with a long BODY.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-1358)