CVE-2000-0909

Published: Dec 19, 2000Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in the automatic mail checking component of Pine 4.21 and earlier allows remote attackers to execute arbitrary commands via a long From: header.

Affected (3)

Products: University Of Washington: Pine

University Of Washington

1 product

Pine

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
University Of Washington Pine	Version 4.0.4
University Of Washington Pine	Version 4.10
University Of Washington Pine	Version 4.21

References (14)

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc (unsafe URL)

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-10/0441.html

Source: cve@mitre.org

http://www.linux-mandrake.com/en/security/MDKSA-2000-073.php3

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2000-102.html

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/84901

Source: cve@mitre.org

http://www.securityfocus.com/bid/1709

Source: cve@mitre.org

ExploitPatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5283

Source: cve@mitre.org

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-00:59.pine.asc (unsafe URL)