EUVD-2001-0721

Malware in sbrugna...

EUVD-2000-0351

Malware in sbrugna...

CVE-2002-1320

Pine 4.44 and earlier allows remote attackers to cause a denial of service core dump and failed restart via an email message with a From header that contains a large number of quotation marks "...

Mandrake Linux Security Advisory : pine (MDKSA-2002:084)

A vulnerability was discovered in pine while parsing and escaping characters of email addresses; not enough memory is allocated for storing the escaped mailbox part of the address. The resulting buffer overflow on the heap makes pine crash. This new version of pine, 4.50, has the vulnerability...

RHEL 2.1 : pine (RHSA-2002:271)

A vulnerability in Pine version 4.44 and earlier releases can cause Pine to crash when sent a carefully crafted email. Updated 06 Feb 2003 Added fixed packages for Advanced Workstation 2.1 Pine, developed at the University of Washington, is a tool for reading, sending, and managing electronic...

CVE-2003-0720

Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type...

Pine <= 4.56 Remote Buffer Overflow Exploit

Exploit for linux platform in category remote exploits =========================================== Pine eip/ebp this can actually be "bruteforced" I didn't show this since this is a PoC and uses "exact offsets" All u do is supply multiple charsets and overwrite larger areas of memory This makes...

CVE-2003-0720

Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type...

CVE-2003-0721

Integer signedness error in rfc2231getparam from strings.c in PINE before 4.58 allows remote attackers to execute arbitrary code via an email that causes an out-of-bounds array access using a negative number...

CVE-2003-0720

Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type...

CVE-2002-0014

URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters &...

Moderate: Red Hat Security Advisory: : : : Updated pine packages available

A vulnerability in Pine version 4.44 and earlier releases can cause Pine to crash when sent a carefully crafted email. Updated 04 July 2003 Added packages for Red Hat Linux on IBM iSeries and pSeries systems. Pine, developed at the University of Washington, is a tool for reading, sending, and...

CVE-2002-1320

Pine 4.44 and earlier allows remote attackers to cause a denial of service core dump and failed restart via an email message with a From header that contains a large number of quotation marks "...

Buffer overflow in pine

Buffer overflow if address contains special characters...

Pine 4.x - Empty MIME Boundary Denial of Service

source: https://www.securityfocus.com/bid/5301/info Pine is an open source mail user agent distributed by the University of Washington. It is freely available for Unix, Linux, and Microsoft Operating Systems. When a mail is received by pine that contains MIME content, and the value of the MIME...

CVE-1999-1187

Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail...

CVE-2000-0909

Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header...

[hacksware]Pine temporary file hijacking vulnerability

Hacksware Bug Report 1. Name: Pine temporary file hijacking vulnerability 2. Release Date: 2000.12.11 3. Affected Application: Pine Version 4.30or maybe other versions 4. Author: [email protected] 5. Type: Local Race Condition 6. Explanation If pine setting is like following: x...

mon_pine.sh

Hacksware Bug Report 1. Name: Pine temporary file hijacking vulnerability 2. Release Date: 2000.12.11 3. Affected Application: Pine Version 4.30or maybe other versions 4. Author: [email protected] 5. Type: Local Race Condition 6. Explanation If pine setting is like following: x...

FreeBSD-SA-00:59.pine

-----BEGIN PGP SIGNED MESSAGE----- ============================================================================= FreeBSD-SA-00:59 Security Advisory FreeBSD, Inc. Topic: pine4 port contains remote vulnerability Category: ports Module: pine4/pine4-ssl/zh-pine4/iw-pine4 Announced: 2000-10-30 Affects...