Vulnerabilities > University OF Washington > Pine > 4.33
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-09-17 | CVE-2003-0720 | Unspecified vulnerability in University of Washington Pine Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type. | 7.5 |
2002-12-31 | CVE-2002-2325 | Improper Input Validation vulnerability in University of Washington Pine The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. | 7.8 |
2002-12-31 | CVE-2002-1903 | Unspecified vulnerability in University of Washington Pine Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. | 5.0 |
2002-12-11 | CVE-2002-1320 | Unspecified vulnerability in University of Washington Pine Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks ("). | 5.0 |
2002-07-26 | CVE-2002-0014 | Unspecified vulnerability in University of Washington Pine URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&). | 7.5 |