University Of Washington

Pine

15 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2000-0847

  • EPSS 1.43%
  • Published 14.11.2000 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.

10

CVE-2000-0352

  • EPSS 2.47%
  • Published 18.11.1999 05:00:00
  • Last modified 03.04.2025 01:03:51

Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.

10

CVE-2000-0353

Exploit
  • EPSS 3.36%
  • Published 28.06.1999 04:00:00
  • Last modified 03.04.2025 01:03:51

Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.

5

CVE-1999-0004

  • EPSS 3.22%
  • Published 16.12.1997 05:00:00
  • Last modified 03.04.2025 01:03:51

MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.

4.6

CVE-1999-1187

  • EPSS 0.07%
  • Published 26.08.1996 04:00:00
  • Last modified 03.04.2025 01:03:51

Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail.