Improper input validation in University_of_washington Pine

CVE-2002-2325

The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.032 (86.3th percentile) — read the EPSS interpretation.

Affected products

University_of_washington Pine — versions 4.20, 4.21, 4.30
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

cve@mitre.org (Patch, vdb-entry, x_refsource_XF)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)