GCVE - cpe:2.3:a:university_of_washington:pine:4.44:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:university_of_washington:pine:4.44:*:*:*:*:*:*:*

part: a version: 4.44 update: *

Vendor	University Of Washington (`ed089f73-e94b-52cd-87e8-787fe2b5154b`)
Product	Pine (`877b69b3-f81a-5840-87e3-57073f56e07b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2003-0720`	vulnerable	2026-06-08 04:47:22.310333	Details available Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type. Published: 2003-09-12T04:00:00.000Z Updated: 2024-08-08T02:05:12.459Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2003-274.html http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0099.html http://marc.info/?l=bugtraq&m=106329356702508&w=2 http://www.redhat.com/support/errata/RHSA-2003-273.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A499	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-2325`	vulnerable	2026-06-08 04:47:19.702835	Details available The c-client library in Internet Message Access Protocol (IMAP) dated before 2002 RC2, as used by Pine 4.20 through 4.44, allows remote attackers to cause a denial of service (client crash) via a MIME-encoded email with Content-Type header containing an empty boundary field. Published: 2007-10-26T19:00:00.000Z Updated: 2024-09-16T17:58:57.396Z Open on db.gcve.eu Reference links http://www.iss.net/security_center/static/9668.php http://online.securityfocus.com/archive/1/284086 http://www.securityfocus.com/bid/5301	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-1903`	vulnerable	2026-06-08 04:47:18.442522	Details available Pine 4.2.1 through 4.4.4 puts Unix usernames and/or uid into Sender: and X-Sender: headers, which could allow remote attackers to obtain sensitive information. Published: 2005-06-28T04:00:00.000Z Updated: 2024-09-16T22:21:08.298Z Open on db.gcve.eu Reference links http://www.iss.net/security_center/static/9297.php http://online.securityfocus.com/archive/1/276029 http://www.securityfocus.com/bid/4963	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-1320`	vulnerable	2026-06-08 04:46:23.417493	Details available Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks ("). Published: 2004-09-01T04:00:00.000Z Updated: 2024-08-08T03:19:28.587Z Open on db.gcve.eu Reference links http://www.redhat.com/support/errata/RHSA-2002-270.html http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-084.php http://www.iss.net/security_center/static/10555.php http://www.securityfocus.com/bid/6120 http://marc.info/?l=bugtraq&m=103668430620531&w=2	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Pine

PURL mappings

Vulnerability references

Contribute