Vulnerabilities > University OF Washington
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2003-06-16 | CVE-2003-0297 | Unspecified vulnerability in University of Washington C-Client, Imap-2002B and Pine c-client IMAP Client, as used in imap-2002b and Pine 4.53, allows remote malicious IMAP servers to cause a denial of service (crash) and possibly execute arbitrary code via certain large (1) literal and (2) mailbox size values that cause either integer signedness errors or integer overflow errors. | 7.5 |
| 2002-12-31 | CVE-2002-2325 | Improper Input Validation vulnerability in University of Washington Pine The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. | 7.8 |
| 2002-12-31 | CVE-2002-1903 | Unspecified vulnerability in University of Washington Pine Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. | 5.0 |
| 2002-12-31 | CVE-2002-1782 | Unspecified vulnerability in University of Washington Uw-Imap 2001.0A The default configuration of University of Washington IMAP daemon (wu-imapd), when running on a system that does not allow shell access, allows a local user with a valid IMAP account to read arbitrary files as that user. | 2.1 |
| 2002-12-11 | CVE-2002-1320 | Unspecified vulnerability in University of Washington Pine Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks ("). | 5.0 |
| 2002-07-26 | CVE-2002-0014 | Unspecified vulnerability in University of Washington Pine URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&). | 7.5 |
| 2002-06-25 | CVE-2002-0379 | Remote Buffer Overflow vulnerability in Wu-imapd Partial Mailbox Attribute Buffer overflow in University of Washington imap server (uw-imapd) imap-2001 (imapd 2001.315) and imap-2001a (imapd 2001.315) with legacy RFC 1730 support, and imapd 2000.287 and earlier, allows remote authenticated users to execute arbitrary code via a long BODY request. | 7.5 |
| 2001-10-18 | CVE-2001-0736 | Local Security vulnerability in Linux Mandrake Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. | 2.1 |
| 2001-09-20 | CVE-2001-0691 | Buffer Overflow vulnerability in Imapd 'Local' Buffer overflows in Washington University imapd 2000a through 2000c could allow local users without shell access to execute code as themselves in certain configurations. | 4.6 |
| 2001-08-31 | CVE-2000-1197 | Denial of Service vulnerability in University of Washington Imap 4.5 POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes. | 2.1 |