University_of_washington Pine
15 CVEs affecting University_of_washington Pine. Latest disclosed: 2005-05-02. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2005-1066 | | 2005-05-02 | Race condition in rpdump in Pine 4.62 and earlier allows local users to overwrite arbitrary files via a symlink attack. | |
CVE-2003-0720 | | 2003-09-17 | Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type. | |
CVE-2003-0300 | | 2003-06-16 | The IMAP Client for Sylpheed 0.8.11 allows remote malicious IMAP servers to cause a denial of service (crash) via certain large literal size values that cause… | |
CVE-2003-0297 | | 2003-06-16 | c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbit… | |
CVE-2002-2325 | | 2002-12-31 | The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a de… | |
CVE-2002-1903 | | 2002-12-31 | Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. | |
CVE-2002-1320 | | 2002-12-11 | Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains… | |
CVE-2002-0014 | | 2002-07-26 | URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metac… | |
CVE-2001-0736 | | 2001-10-18 | Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink at… | |
CVE-2000-0909 | | 2000-12-19 | Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header. | |
CVE-2000-0847 | | 2000-11-14 | Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long… | |
CVE-2000-0352 | | 1999-11-18 | Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed U… | |
CVE-2000-0353 | | 1999-06-28 | Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web se… | |
CVE-1999-0004 | | 1997-12-16 | MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. | |
CVE-1999-1187 | | 1996-08-26 | Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail. |