University Of Washington: Security Vulnerabilities
POP2 or POP3 server (pop3d) in imap-uw IMAP package on FreeBSD and other operating systems creates lock files with predictable names, which allows local users to cause a denial of service (lack of mail access) for other users by creating lock files for other mail boxes.
CVSS Score
2.1
EPSS Score
0.001
Published
2001-08-31
Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header.
CVSS Score
7.5
EPSS Score
0.11
Published
2000-12-19
Buffer overflow in University of Washington c-client library (used by pine and other programs) allows remote attackers to execute arbitrary commands via a long X-Keywords header.
CVSS Score
7.5
EPSS Score
0.014
Published
2000-11-14
Buffer overflow in University of Washington imapd version 4.7 allows users with a valid account to execute commands via LIST or other commands.
CVSS Score
7.5
EPSS Score
0.799
Published
2000-04-16
wu-ftp with FTP conversion enabled allows an attacker to execute commands via a malformed file name that is interpreted as an argument to the program that does the conversion, e.g. tar or uncompress.
CVSS Score
7.5
EPSS Score
0.038
Published
1999-12-20
Pine before version 4.21 does not properly filter shell metacharacters from URLs, which allows remote attackers to execute arbitrary commands via a malformed URL.
CVSS Score
10.0
EPSS Score
0.025
Published
1999-11-18
Pine 4.x allows a remote attacker to execute arbitrary commands via an index.html file which executes lynx and obtains a uudecoded file from a malicious web server, which is then executed by Pine.
CVSS Score
10.0
EPSS Score
0.034
Published
1999-06-28
Buffer overflow in the pop-2d POP daemon in the IMAP package allows remote attackers to gain privileges via the FOLD command.
CVSS Score
10.0
EPSS Score
0.035
Published
1999-05-26
Arbitrary command execution via IMAP buffer overflow in authenticate command.
CVSS Score
10.0
EPSS Score
0.175
Published
1998-07-20
MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook.
CVSS Score
5.0
EPSS Score
0.042
Published
1997-12-16