Vulnerabilities > University OF Washington > Pine > 4.20

DATE CVE VULNERABILITY TITLE RISK
2003-09-17 CVE-2003-0720 Unspecified vulnerability in University of Washington Pine
Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type.
network
low complexity
university-of-washington
7.5
2002-12-31 CVE-2002-2325 Improper Input Validation vulnerability in University of Washington Pine
The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field.
network
low complexity
university-of-washington CWE-20
7.8
2002-12-11 CVE-2002-1320 Unspecified vulnerability in University of Washington Pine
Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks (").
network
low complexity
university-of-washington
5.0
2002-07-26 CVE-2002-0014 Unspecified vulnerability in University of Washington Pine
URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&).
network
low complexity
university-of-washington
7.5
2000-11-14 CVE-2000-0847 Unspecified vulnerability in University of Washington Imap and Pine
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
network
low complexity
university-of-washington
7.5