Pine 4.x - 'From:' Heap Corruption
| EKU-ID: 27479 | CVE: CVE-2002-1320;OSVDB-6948 | OSVDB-ID: |
| Author: lsjoberg | Published: 2002-11-07 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27479 | CVE: CVE-2002-1320;OSVDB-6948 | OSVDB-ID: |
| Author: lsjoberg | Published: 2002-11-07 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6120/info A heap corruption may occur when Pine receives an email message containing a particularly crafted "From:" address. Though the address is RFC compliant, Pine reportedly fails to parse it correctly, resulting in a core dump. Execution of arbitrary code may be possible. "\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\"\""@host.fubar