CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
96.8%
Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type.
Vendor | Product | Version | CPE |
---|---|---|---|
university_of_washington | pine | 3.98 | cpe:2.3:a:university_of_washington:pine:3.98:*:*:*:*:*:*:* |
university_of_washington | pine | 4.0.2 | cpe:2.3:a:university_of_washington:pine:4.0.2:*:*:*:*:*:*:* |
university_of_washington | pine | 4.0.4 | cpe:2.3:a:university_of_washington:pine:4.0.4:*:*:*:*:*:*:* |
university_of_washington | pine | 4.10 | cpe:2.3:a:university_of_washington:pine:4.10:*:*:*:*:*:*:* |
university_of_washington | pine | 4.20 | cpe:2.3:a:university_of_washington:pine:4.20:*:*:*:*:*:*:* |
university_of_washington | pine | 4.21 | cpe:2.3:a:university_of_washington:pine:4.21:*:*:*:*:*:*:* |
university_of_washington | pine | 4.30 | cpe:2.3:a:university_of_washington:pine:4.30:*:*:*:*:*:*:* |
university_of_washington | pine | 4.33 | cpe:2.3:a:university_of_washington:pine:4.33:*:*:*:*:*:*:* |
university_of_washington | pine | 4.44 | cpe:2.3:a:university_of_washington:pine:4.44:*:*:*:*:*:*:* |
university_of_washington | pine | 4.50 | cpe:2.3:a:university_of_washington:pine:4.50:*:*:*:*:*:*:* |
archives.neohapsis.com/archives/vulnwatch/2003-q3/0099.html
marc.info/?l=bugtraq&m=106322571805153&w=2
marc.info/?l=bugtraq&m=106329356702508&w=2
www.idefense.com/advisory/09.10.03.txt
www.redhat.com/support/errata/RHSA-2003-273.html
www.redhat.com/support/errata/RHSA-2003-274.html
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A499