University Of Washington: >> Pine Security Vulnerabilities
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
CVSS Score
7.5
EPSS Score
0.012
Published
2000-11-14
Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.
CVSS Score
10.0
EPSS Score
0.025
Published
1999-11-18
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
CVSS Score
10.0
EPSS Score
0.034
Published
1999-06-28
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.
CVSS Score
5.0
EPSS Score
0.042
Published
1997-12-16
Pine before version 3.94 allows local users to gain privileges via a symlink attack on a lockfile that is created when a user receives new mail.
CVSS Score
4.6
EPSS Score
0.001
Published
1996-08-26
Page 2