FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

pine remotely exploitable vulnerabilities

Affected packages
iw-pine < 4.58
pine < 4.58
zh-pine < 4.58

Details

VuXML ID 39bd57e6-5d83-11d8-80e3-0020ed76ef5a
Discovery 2003-09-10
Entry 2004-02-12

Pine versions prior to 4.58 are affected by two vulnerabilities discovered by iDEFENSE, a buffer overflow in mailview.c and an integer overflow in strings.c. Both vulnerabilities can result in arbitrary code execution when processing a malicious message.

References

CVE Name CVE-2003-0720
CVE Name CVE-2003-0721
URL http://www.idefense.com/application/poi/display?id=5