Description
Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header.
Affected products
- university_of_washington / pine4.0.4 – 4.0.4
- university_of_washington / pine4.10 – 4.10
- university_of_washington / pine4.21 – 4.21
References
- VENDOR_ADVISORYftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc
- MISChttp://www.redhat.com/support/errata/RHSA-2000-102.html
- MISChttp://archives.neohapsis.com/archives/bugtraq/2000-10/0441.html
- MISChttp://www.securityfocus.com/bid/1709
- MISChttp://www.securityfocus.com/archive/1/84901
- MISChttp://www.linux-mandrake.com/en/security/MDKSA-2000-073.php3
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/5283