Description
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
Affected products
- university_of_washington / imap4.7b – 4.7b
- university_of_washington / imap4.7c – 4.7c
- university_of_washington / pine4.20 – 4.20
- university_of_washington / pine4.21 – 4.21
References
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-08/0437.html
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-08/0425.html
- MISChttp://www.securityfocus.com/bid/1646
- MISChttp://www.securityfocus.com/bid/1687
- MISChttp://archives.neohapsis.com/archives/freebsd/2000-09/0108.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5223